chore(findings): opensource/r/r-studio
Summary
opensource/r/r-studio has 70 new findings discovered during continuous monitoring.
id | source | package |
---|---|---|
CVE-2020-13435 | twistlock_cve | sqlite-3.26.0-13.el8 |
CVE-2019-13750 | twistlock_cve | sqlite-3.26.0-13.el8 |
CVE-2019-13751 | twistlock_cve | sqlite-3.26.0-13.el8 |
CVE-2019-5827 | twistlock_cve | sqlite-3.26.0-13.el8 |
CVE-2019-19603 | anchore_cve | sqlite-3.26.0-13.el8 |
CVE-2019-13750 | anchore_cve | sqlite-3.26.0-13.el8 |
CVE-2020-13435 | anchore_cve | sqlite-3.26.0-13.el8 |
CVE-2019-13751 | anchore_cve | sqlite-3.26.0-13.el8 |
CVE-2018-18064 | twistlock_cve | cairo-1.15.12-3.el8 |
CVE-2018-19876 | twistlock_cve | cairo-1.15.12-3.el8 |
CVE-2019-6462 | twistlock_cve | cairo-1.15.12-3.el8 |
CVE-2019-6461 | twistlock_cve | cairo-1.15.12-3.el8 |
CVE-2019-14250 | twistlock_cve | libquadmath-devel-8.4.1-1.el8 |
CVE-2018-20673 | twistlock_cve | libquadmath-devel-8.4.1-1.el8 |
CVE-2018-20657 | twistlock_cve | libquadmath-devel-8.4.1-1.el8 |
CVE-2021-3114 | twistlock_cve | libquadmath-devel-8.4.1-1.el8 |
CVE-2017-17095 | twistlock_cve | libtiff-4.0.9-18.el8 |
CVE-2018-10779 | twistlock_cve | libtiff-4.0.9-18.el8 |
CVE-2018-10801 | twistlock_cve | libtiff-4.0.9-18.el8 |
CVE-2018-15209 | twistlock_cve | libtiff-4.0.9-18.el8 |
CVE-2018-16335 | twistlock_cve | libtiff-4.0.9-18.el8 |
CVE-2018-17101 | twistlock_cve | libtiff-4.0.9-18.el8 |
CVE-2018-19210 | twistlock_cve | libtiff-4.0.9-18.el8 |
CVE-2018-5360 | twistlock_cve | libtiff-4.0.9-18.el8 |
CVE-2019-6128 | twistlock_cve | libtiff-4.0.9-18.el8 |
CVE-2020-19131 | twistlock_cve | libtiff-4.0.9-18.el8 |
CVE-2019-9937 | twistlock_cve | sqlite-3.26.0-13.el8 |
CVE-2019-9936 | twistlock_cve | sqlite-3.26.0-13.el8 |
CVE-2019-19244 | twistlock_cve | sqlite-3.26.0-13.el8 |
CVE-2019-19603 | twistlock_cve | sqlite-3.26.0-13.el8 |
CVE-2018-1121 | twistlock_cve | procps-ng-3.3.15-6.el8 |
CVE-2021-23841 | twistlock_cve | compat-openssl10-1.0.2o-3.el8 |
CVE-2020-1968 | twistlock_cve | compat-openssl10-1.0.2o-3.el8 |
CVE-2018-0734 | twistlock_cve | compat-openssl10-1.0.2o-3.el8 |
CVE-2018-5407 | twistlock_cve | compat-openssl10-1.0.2o-3.el8 |
CVE-2019-1547 | twistlock_cve | compat-openssl10-1.0.2o-3.el8 |
CVE-2019-1551 | twistlock_cve | compat-openssl10-1.0.2o-3.el8 |
CVE-2019-1559 | twistlock_cve | compat-openssl10-1.0.2o-3.el8 |
CVE-2019-1563 | twistlock_cve | compat-openssl10-1.0.2o-3.el8 |
CVE-2021-3712 | twistlock_cve | compat-openssl10-1.0.2o-3.el8 |
CVE-2021-27645 | twistlock_cve | glibc-langpack-en-2.28-151.el8 |
CVE-2021-33574 | twistlock_cve | glibc-langpack-en-2.28-151.el8 |
CVE-2021-35942 | twistlock_cve | glibc-langpack-en-2.28-151.el8 |
CVE-2019-14250 | twistlock_cve | libgfortran-8.4.1-1.el8 |
CVE-2018-20673 | twistlock_cve | libgfortran-8.4.1-1.el8 |
CVE-2018-20657 | twistlock_cve | libgfortran-8.4.1-1.el8 |
CVE-2021-3114 | twistlock_cve | libgfortran-8.4.1-1.el8 |
CVE-2020-13790 | twistlock_cve | libjpeg-turbo-1.5.3-10.el8 |
CVE-2019-2201 | twistlock_cve | libjpeg-turbo-1.5.3-10.el8 |
CVE-2019-14250 | twistlock_cve | libgomp-8.4.1-1.el8 |
CVE-2018-20673 | twistlock_cve | libgomp-8.4.1-1.el8 |
CVE-2018-20657 | twistlock_cve | libgomp-8.4.1-1.el8 |
CVE-2021-3114 | twistlock_cve | libgomp-8.4.1-1.el8 |
CVE-2018-20673 | twistlock_cve | gcc-8.4.1-1.el8 |
CVE-2019-14250 | twistlock_cve | gcc-8.4.1-1.el8 |
CVE-2018-20657 | twistlock_cve | gcc-8.4.1-1.el8 |
CVE-2019-14250 | twistlock_cve | gcc-gfortran-8.4.1-1.el8 |
CVE-2018-20673 | twistlock_cve | gcc-gfortran-8.4.1-1.el8 |
CVE-2018-20657 | twistlock_cve | gcc-gfortran-8.4.1-1.el8 |
CVE-2019-12900 | twistlock_cve | bzip2-devel-1.0.6-26.el8 |
CVE-2019-14250 | twistlock_cve | libquadmath-8.4.1-1.el8 |
CVE-2018-20673 | twistlock_cve | libquadmath-8.4.1-1.el8 |
CVE-2018-20657 | twistlock_cve | libquadmath-8.4.1-1.el8 |
CVE-2021-3114 | twistlock_cve | libquadmath-8.4.1-1.el8 |
CVE-2019-14250 | twistlock_cve | cpp-8.4.1-1.el8 |
CVE-2018-20673 | twistlock_cve | cpp-8.4.1-1.el8 |
CVE-2018-20657 | twistlock_cve | cpp-8.4.1-1.el8 |
CVE-2021-3114 | twistlock_cve | cpp-8.4.1-1.el8 |
CVE-2019-5827 | anchore_cve | sqlite-3.26.0-13.el8 |
CVE-2020-1971 | twistlock_cve | compat-openssl10-1.0.2o-3.el8 |
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/opensource/r/r-studio/-/jobs/7570333
Definition of Done
Justifications:
-
All findings have been justified -
Justifications have been provided to the container hardening team
Approval Process:
-
Findings Approver has reviewed and approved all justifications -
Approval request has been sent to Authorizing Official -
Approval request has been processed by Authorizing Official
Edited by Andy Maksymowicz