chore(findings): apache/superset
Summary
apache/superset has 202 new findings discovered during continuous monitoring.
id | source | severity | package |
---|---|---|---|
CVE-2021-28861 | Anchore CVE | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2021-3733 | Anchore CVE | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2007-4559 | Anchore CVE | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2021-28861 | Anchore CVE | Medium | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2022-4285 | Anchore CVE | Medium | binutils-2.30-117.el8 |
CVE-2022-0391 | Anchore CVE | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2021-3733 | Anchore CVE | Medium | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2021-3737 | Anchore CVE | Low | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2007-4559 | Anchore CVE | Medium | platform-python-devel-3.6.8-48.el8_7.1 |
GHSA-w7pp-m8wf-vj6r | Anchore CVE | Medium | cryptography-3.3.2 |
CVE-2022-45061 | Anchore CVE | Medium | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2021-3737 | Anchore CVE | Low | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2022-45061 | Anchore CVE | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2015-20107 | Anchore CVE | Medium | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2023-24056 | Anchore CVE | Medium | libpkgconf-1.4.2-1.el8 |
CVE-2007-4559 | Anchore CVE | Medium | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
GHSA-x4qr-2fvf-3mr5 | Anchore CVE | High | cryptography-3.3.2 |
CVE-2023-24056 | Anchore CVE | Medium | pkgconf-1.4.2-1.el8 |
CVE-2022-0391 | Anchore CVE | Medium | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2023-24056 | Anchore CVE | Medium | pkgconf-m4-1.4.2-1.el8 |
CVE-2023-24056 | Anchore CVE | Medium | pkgconf-pkg-config-1.4.2-1.el8 |
CVE-2015-20107 | Anchore CVE | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2023-24329 | Anchore CVE | High | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2023-24329 | Anchore CVE | High | platform-python-devel-3.6.8-48.el8_7.1 |
CVE-2023-24329 | Anchore CVE | High | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2022-40898 | Anchore CVE | Medium | python3-wheel-1:0.31.1-3.module+el8.5.0+12207+5c5719bc |
CVE-2023-0464 | Anchore CVE | Low | openssl-devel-1:1.1.1k-9.el8_7 |
CVE-2023-0465 | Anchore CVE | Low | openssl-devel-1:1.1.1k-9.el8_7 |
CVE-2023-0466 | Anchore CVE | Low | openssl-devel-1:1.1.1k-9.el8_7 |
CVE-2021-46778 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-28388 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-0590 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-23454 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-28464 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-30594 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-0045 | Anchore CVE | Low | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-28693 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3628 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-23455 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-45934 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-28466 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-47929 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3028 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-0461 | Anchore CVE | High | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1195 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1095 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2021-3923 | Anchore CVE | Low | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1838 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-36402 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1073 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-38457 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-21233 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3619 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-39188 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-2663 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-36879 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-28328 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3522 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-42721 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-39189 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-36280 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-41858 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-20566 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-0394 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-28327 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1118 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3545 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-2196 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-20154 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3565 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-42722 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-43750 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-22998 | Anchore CVE | Low | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-0597 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-42720 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-0047 | Anchore CVE | Low | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3625 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1252 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3524 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1382 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-41850 | Anchore CVE | Low | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-1972 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3567 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1281 | Anchore CVE | High | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2021-33656 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-42703 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1637 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1582 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-38096 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3707 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-41674 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1380 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-4662 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3594 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-20141 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3640 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-23824 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3623 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3566 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-42896 | Anchore CVE | High | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2021-33655 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1513 | Anchore CVE | Low | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-42895 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-2503 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3564 | Anchore CVE | High | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-40133 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-45869 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-3239 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-41218 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2022-4129 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1855 | Anchore CVE | Low | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-26545 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
GHSA-9hcr-9hcv-x6pv | Anchore CVE | High | Flask-AppBuilder-4.2.1 |
CVE-2023-1989 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1079 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2023-1972 | Anchore CVE | Low | binutils-2.30-117.el8 |
CVE-2022-20572 | Anchore CVE | Medium | kernel-headers-4.18.0-425.19.2.el8_7 |
CVE-2018-20225 | Anchore CVE | High | pip-23.1 |
CVE-2023-24329 | Twistlock CVE | Critical | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2023-24329 | Twistlock CVE | Critical | python3-wheel-0.31.1-3.module+el8.5.0+12207+5c5719bc |
CVE-2023-24329 | Twistlock CVE | Critical | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2023-24329 | Twistlock CVE | Critical | platform-python-devel-3.6.8-48.el8_7.1 |
CVE-2021-45078 | Twistlock CVE | Medium | binutils-2.30-117.el8 |
CVE-2018-1000876 | Twistlock CVE | Medium | binutils-2.30-117.el8 |
CVE-2022-45061 | Twistlock CVE | Medium | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2022-45061 | Twistlock CVE | Medium | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2022-45061 | Twistlock CVE | Medium | python3-wheel-0.31.1-3.module+el8.5.0+12207+5c5719bc |
CVE-2022-40898 | Twistlock CVE | Medium | python3-wheel-0.31.1-3.module+el8.5.0+12207+5c5719bc |
CVE-2020-17049 | Twistlock CVE | Medium | krb5-devel-1.18.2-22.el8_7 |
CVE-2023-24056 | Twistlock CVE | Medium | pkgconf-m4-1.4.2-1.el8 |
CVE-2023-24056 | Twistlock CVE | Medium | pkgconf-1.4.2-1.el8 |
CVE-2023-24056 | Twistlock CVE | Medium | libpkgconf-1.4.2-1.el8 |
CVE-2023-24056 | Twistlock CVE | Medium | pkgconf-pkg-config-1.4.2-1.el8 |
CVE-2022-4285 | Twistlock CVE | Medium | binutils-2.30-117.el8 |
CVE-2019-9077 | Twistlock CVE | Medium | binutils-2.30-117.el8 |
CVE-2019-9075 | Twistlock CVE | Medium | binutils-2.30-117.el8 |
CVE-2019-9074 | Twistlock CVE | Medium | binutils-2.30-117.el8 |
CVE-2018-20671 | Twistlock CVE | Medium | binutils-2.30-117.el8 |
CVE-2018-20623 | Twistlock CVE | Medium | binutils-2.30-117.el8 |
CVE-2021-3826 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2019-9674 | Twistlock CVE | Low | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2019-9674 | Twistlock CVE | Low | python3-wheel-0.31.1-3.module+el8.5.0+12207+5c5719bc |
CVE-2019-9674 | Twistlock CVE | Low | platform-python-devel-3.6.8-48.el8_7.1 |
CVE-2019-9674 | Twistlock CVE | Low | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2023-25584 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2020-35494 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-20406 | Twistlock CVE | Low | python36-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2018-20406 | Twistlock CVE | Low | python36-devel-3.6.8-38.module+el8.5.0+12207+5c5719bc |
CVE-2022-38533 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2020-35507 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2020-35496 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2020-35495 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2020-35493 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2019-12972 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-12934 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-20673 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2023-25588 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2023-25585 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-17985 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-18701 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-18484 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-18483 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2019-9071 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2019-14250 | Twistlock CVE | Low | gcc-c++-8.5.0-16.el8_7 |
CVE-2019-14250 | Twistlock CVE | Low | cpp-8.5.0-16.el8_7 |
CVE-2019-14250 | Twistlock CVE | Low | libgomp-8.5.0-16.el8_7 |
CVE-2019-14250 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2019-14250 | Twistlock CVE | Low | libstdc++-devel-8.5.0-16.el8_7 |
CVE-2019-14250 | Twistlock CVE | Low | gcc-8.5.0-16.el8_7 |
CVE-2018-6872 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-20657 | Twistlock CVE | Low | cpp-8.5.0-16.el8_7 |
CVE-2018-20657 | Twistlock CVE | Low | libstdc++-devel-8.5.0-16.el8_7 |
CVE-2018-20657 | Twistlock CVE | Low | gcc-c++-8.5.0-16.el8_7 |
CVE-2018-20657 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-20657 | Twistlock CVE | Low | libgomp-8.5.0-16.el8_7 |
CVE-2018-20657 | Twistlock CVE | Low | gcc-8.5.0-16.el8_7 |
CVE-2018-20651 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-20002 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-19932 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-18607 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-18606 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-18605 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-18309 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-17794 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-17360 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-12699 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-12698 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-12697 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2018-12641 | Twistlock CVE | Low | binutils-2.30-117.el8 |
CVE-2020-17049 | Twistlock CVE | Medium | libkadm5-1.18.2-22.el8_7 |
CVE-2018-20406 | Twistlock CVE | Low | python3-wheel-0.31.1-3.module+el8.5.0+12207+5c5719bc |
CVE-2023-1579 | Twistlock CVE | Medium | binutils-2.30-117.el8 |
CVE-2023-0464 | Twistlock CVE | Low | openssl-devel-1.1.1k-9.el8_7 |
CVE-2023-0466 | Twistlock CVE | Low | openssl-devel-1.1.1k-9.el8_7 |
CVE-2023-0465 | Twistlock CVE | Low | openssl-devel-1.1.1k-9.el8_7 |
CVE-2023-1972 | Twistlock CVE | Low | binutils-2.30-117.el8 |
PRISMA-2022-0168 | Twistlock CVE | High | pip-9.0.3 |
PRISMA-2023-0024 | Twistlock CVE | High | aiohttp-3.8.4 |
CVE-2023-29005 | Twistlock CVE | High | flask-appbuilder-4.2.1 |
CVE-2023-0286 | Twistlock CVE | High | cryptography-3.3.2 |
CVE-2023-23931 | Twistlock CVE | Medium | cryptography-3.3.2 |
PRISMA-2022-0404 | Twistlock CVE | Medium | wheel-0.31.1 |
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/opensource/apache/superset/superset/-/jobs/23467748
Tasks
Contributor:
-
Provide justifications for findings in the VAT (docs) -
Apply the ~"Hardening::Verification" label to this issue and wait for feedback
Iron Bank:
-
Review findings and justifications
Note: If the above process is rejected for any reason, the
Verification
label will be removed and the issue will be sent back toOpen
. Any comments will be listed in this issue for you to address. Once they have been addressed, you must re-add theVerification
label.
Questions?
Contact the Iron Bank team by commenting on this issue with your questions or concerns. If you do not receive a response, add /cc @ironbank-notifications/onboarding
.
Additionally, Iron Bank hosts an AMA working session every Wednesday from 1630-1730EST to answer questions.