UNCLASSIFIED - NO CUI

This project is archived. Its data is read-only.

chore(findings): knative/0.11.1/istio

Summary

knative/0.11.1/istio has 27 new findings discovered during continuous monitoring.

id	source	package
CCE-85987-6	oscap_comp	Uninherited
CVE-2021-36221	twistlock_cve	go-1.13
CVE-2020-24553	twistlock_cve	go-1.13
CVE-2021-34558	twistlock_cve	go-1.13
CVE-2021-31525	twistlock_cve	go-1.13
CVE-2021-3114	twistlock_cve	go-1.13
CVE-2020-29510	twistlock_cve	go-1.13
CVE-2020-15586	twistlock_cve	go-1.13
CVE-2021-33197	twistlock_cve	go-1.13
CVE-2021-33195	twistlock_cve	go-1.13
CVE-2021-33194	twistlock_cve	go-1.13
CVE-2021-29923	twistlock_cve	go-1.13
CVE-2021-27918	twistlock_cve	go-1.13
CVE-2020-16845	twistlock_cve	go-1.13
CVE-2021-33196	twistlock_cve	go-1.13
CVE-2021-38297	twistlock_cve	go-1.13
CVE-2021-44716	twistlock_cve	go-1.13
CVE-2020-28362	twistlock_cve	go-1.13
CVE-2020-7919	twistlock_cve	go-1.13
CVE-2021-41771	twistlock_cve	go-1.13
CVE-2019-16276	twistlock_cve	go-1.13
CVE-2021-41772	twistlock_cve	go-1.13
CVE-2020-28367	twistlock_cve	go-1.13
CVE-2020-28366	twistlock_cve	go-1.13
CVE-2019-17596	twistlock_cve	go-1.13
CVE-2021-33198	twistlock_cve	go-1.13
CVE-2021-39293	twistlock_cve	go-1.13

More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/knative/0.11.1/istio/-/jobs/9864357

Definition of Done

Justifications:

All findings have been justified
Justifications have been provided to the container hardening team

Approval Process:

Findings Approver has reviewed and approved all justifications
Approval request has been sent to Authorizing Official
Approval request has been processed by Authorizing Official

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information

UNCLASSIFIED - NO CUI