4.4.4 update to resolve CVE's and update images. (!34) · Merge requests · Iron Bank Containers / Neuvector / Neuvector / Controller

Tracy Walker requested to merge 4.4.4-Update into development Feb 28, 2022

Resolve CVE's and update to image to 4.4.4. NeuVector is not using github libraries, or go libraries, or procps, or libbpf. These must be inherited from the base image.

There are no details regarding oscap vulnerabilities.

CVE-2018-1121 twistlock_cve Low procps-ng-3.3.15-6.el8 CVE-2021-45941 twistlock_cve Moderate libbpf-0.4.0-1.el8 CVE-2021-45940 twistlock_cve Moderate libbpf-0.4.0-1.el8 CVE-2020-8912 twistlock_cve Low github.com/aws/aws-sdk-go-v1.25.41 CCE-83497-8 oscap_comp Medium CCE-86519-6 oscap_comp Medium CCE-80806-3 oscap_comp Medium CCE-80809-7 oscap_comp Medium Identifier Source Severity Package Package Path CVE-2020-26160 twistlock_cve High github.com/dgrijalva/jwt-go-v3.2.0 CVE-2022-23773 twistlock_cve High go-1.17.5 CVE-2022-23772 twistlock_cve High go-1.17.5 CVE-2022-23806 twistlock_cve Critical go-1.17.5

4.4.4 update to resolve CVE's and update images.

Merge request reports