UNCLASSIFIED - NO CUI

Skip to content

chore(findings): opensource/mysql/mysql8

Summary

opensource/mysql/mysql8 has 37 new findings discovered during continuous monitoring.

id source package
CCE-85987-6 oscap_comp Uninherited
CVE-2020-16156 twistlock_cve perl-IO-1.38-420.el8
CVE-2020-16156 twistlock_cve perl-interpreter-5.26.3-420.el8
CVE-2020-16156 twistlock_cve perl-Errno-1.28-420.el8
CVE-2020-16156 twistlock_cve perl-libs-5.26.3-420.el8
CVE-2020-16156 twistlock_cve perl-macros-5.26.3-420.el8
CVE-2022-22824 anchore_cve expat-2.2.5-4.el8
CVE-2022-22826 anchore_cve expat-2.2.5-4.el8
CVE-2022-22825 anchore_cve expat-2.2.5-4.el8
CVE-2022-22823 anchore_cve expat-2.2.5-4.el8
CVE-2022-0563 anchore_cve libsmartcols-2.32.1-28.el8
CVE-2022-23218 anchore_cve glibc-common-2.28-164.el8
CVE-2021-46143 anchore_cve expat-2.2.5-4.el8
CVE-2022-22827 anchore_cve expat-2.2.5-4.el8
CVE-2022-23308 anchore_cve python3-libxml2-2.9.7-9.el8_4.2
CVE-2022-25313 anchore_cve expat-2.2.5-4.el8
CVE-2021-45960 anchore_cve expat-2.2.5-4.el8
CVE-2022-23218 anchore_cve glibc-minimal-langpack-2.28-164.el8
CVE-2022-0391 anchore_cve python3-libs-3.6.8-41.el8
CVE-2022-23218 anchore_cve glibc-2.28-164.el8
CVE-2022-23219 anchore_cve glibc-minimal-langpack-2.28-164.el8
CVE-2022-22822 anchore_cve expat-2.2.5-4.el8
CVE-2022-0391 anchore_cve platform-python-3.6.8-41.el8
CVE-2022-0563 anchore_cve libmount-2.32.1-28.el8
CVE-2022-25314 anchore_cve expat-2.2.5-4.el8
CVE-2022-23219 anchore_cve glibc-2.28-164.el8
CVE-2022-0563 anchore_cve libfdisk-2.32.1-28.el8
CVE-2022-23308 anchore_cve libxml2-2.9.7-9.el8_4.2
CVE-2021-43519 anchore_cve lua-libs-5.3.4-12.el8
CVE-2022-0563 anchore_cve libblkid-2.32.1-28.el8
CVE-2022-0563 anchore_cve libuuid-2.32.1-28.el8
CVE-2022-23219 anchore_cve glibc-common-2.28-164.el8
CVE-2022-23852 anchore_cve expat-2.2.5-4.el8
CVE-2022-0563 anchore_cve util-linux-2.32.1-28.el8
CVE-2022-25236 anchore_cve expat-2.2.5-4.el8
CVE-2022-25315 anchore_cve expat-2.2.5-4.el8
CVE-2022-25235 anchore_cve expat-2.2.5-4.el8

More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/opensource/mysql/mysql8/-/jobs/10510716

Definition of Done

Justifications:

  • All findings have been justified
  • Justifications have been provided to the container hardening team

Approval Process:

  • Findings Approver has reviewed and approved all justifications
  • Approval request has been sent to Authorizing Official
  • Approval request has been processed by Authorizing Official
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information

UNCLASSIFIED - NO CUI