chore(findings): virtualitics/odin/odin_app
Summary
virtualitics/odin/odin_app has 70 new findings discovered during continuous monitoring.
id | source | package |
---|---|---|
CVE-2021-36222 | twistlock_cve | krb5-libs-1.18.2-8.el8 |
CVE-2021-37750 | twistlock_cve | krb5-libs-1.18.2-8.el8 |
CVE-2021-22922 | twistlock_cve | libcurl-7.61.1-18.el8 |
CVE-2021-22923 | twistlock_cve | libcurl-7.61.1-18.el8 |
CVE-2021-22924 | twistlock_cve | libcurl-7.61.1-18.el8 |
CVE-2021-22925 | twistlock_cve | curl-7.61.1-18.el8 |
CVE-2021-22946 | twistlock_cve | curl-7.61.1-18.el8 |
CVE-2021-22947 | twistlock_cve | curl-7.61.1-18.el8 |
CVE-2021-22946 | anchore_cve | curl-7.61.1-18.el8 |
CVE-2021-22946 | anchore_cve | libcurl-7.61.1-18.el8 |
CVE-2021-22947 | anchore_cve | libcurl-7.61.1-18.el8 |
CVE-2021-3737 | anchore_cve | platform-python-3.6.8-37.el8 |
CVE-2021-3733 | anchore_cve | python3-libs-3.6.8-37.el8 |
CVE-2021-3733 | anchore_cve | platform-python-3.6.8-37.el8 |
CVE-2021-3737 | anchore_cve | python3-libs-3.6.8-37.el8 |
CVE-2021-22947 | anchore_cve | curl-7.61.1-18.el8 |
CCE-80788-3 | oscap_comp | Uninherited |
CCE-83478-8 | oscap_comp | Uninherited |
CCE-83480-4 | oscap_comp | Uninherited |
CCE-80668-7 | oscap_comp | Uninherited |
CCE-80654-7 | oscap_comp | Uninherited |
CCE-82046-4 | oscap_comp | Uninherited |
CCE-80656-2 | oscap_comp | Uninherited |
CCE-80647-1 | oscap_comp | Uninherited |
CCE-80648-9 | oscap_comp | Uninherited |
CCE-80652-1 | oscap_comp | Uninherited |
CCE-84037-1 | oscap_comp | Uninherited |
CCE-81036-6 | oscap_comp | Uninherited |
CCE-82888-9 | oscap_comp | Uninherited |
CCE-83375-6 | oscap_comp | Uninherited |
CCE-80783-4 | oscap_comp | Uninherited |
CCE-86519-6 | oscap_comp | Uninherited |
CVE-2018-20406 | twistlock_cve | python3-libs-3.6.8-37.el8 |
CVE-2019-9674 | twistlock_cve | python3-libs-3.6.8-37.el8 |
CVE-2021-3737 | twistlock_cve | python3-libs-3.6.8-37.el8 |
CVE-2021-3426 | twistlock_cve | python3-libs-3.6.8-37.el8 |
CVE-2021-22876 | twistlock_cve | libcurl-7.61.1-18.el8 |
CVE-2021-22898 | twistlock_cve | libcurl-7.61.1-18.el8 |
CVE-2021-22925 | twistlock_cve | libcurl-7.61.1-18.el8 |
CVE-2021-22946 | twistlock_cve | libcurl-7.61.1-18.el8 |
CVE-2021-22947 | twistlock_cve | libcurl-7.61.1-18.el8 |
CVE-2021-3618 | twistlock_cve | nginx-1.20.1-1.el8.ngx |
CVE-2018-20406 | twistlock_cve | platform-python-3.6.8-37.el8 |
CVE-2019-9674 | twistlock_cve | platform-python-3.6.8-37.el8 |
CVE-2021-3737 | twistlock_cve | platform-python-3.6.8-37.el8 |
CVE-2021-3426 | twistlock_cve | platform-python-3.6.8-37.el8 |
CVE-2019-14250 | twistlock_cve | libgomp-8.4.1-1.el8 |
CVE-2018-20673 | twistlock_cve | libgomp-8.4.1-1.el8 |
CVE-2018-20657 | twistlock_cve | libgomp-8.4.1-1.el8 |
CVE-2021-3114 | twistlock_cve | libgomp-8.4.1-1.el8 |
CVE-2021-33938 | twistlock_cve | libsolv-0.7.16-2.el8 |
CVE-2021-33930 | twistlock_cve | libsolv-0.7.16-2.el8 |
CVE-2021-33929 | twistlock_cve | libsolv-0.7.16-2.el8 |
CVE-2021-33928 | twistlock_cve | libsolv-0.7.16-2.el8 |
CVE-2021-33930 | anchore_cve | libsolv-0.7.16-2.el8 |
CVE-2021-33928 | anchore_cve | libsolv-0.7.16-2.el8 |
CVE-2021-33929 | anchore_cve | libsolv-0.7.16-2.el8 |
CVE-2021-33938 | anchore_cve | libsolv-0.7.16-2.el8 |
CVE-2021-22922 | oscap_comp | Uninherited |
CVE-2021-22923 | oscap_comp | Uninherited |
CVE-2021-22924 | oscap_comp | Uninherited |
CVE-2021-36222 | oscap_comp | Uninherited |
CVE-2021-37750 | oscap_comp | Uninherited |
CVE-2021-33928 | oscap_comp | Uninherited |
CVE-2021-33929 | oscap_comp | Uninherited |
CVE-2021-33930 | oscap_comp | Uninherited |
CVE-2021-33938 | oscap_comp | Uninherited |
CVE-2021-22946 | oscap_comp | Uninherited |
CVE-2021-22947 | oscap_comp | Uninherited |
CVE-2021-3733 | oscap_comp | Uninherited |
More information can be found in the failed pipeline located here: https://repo1.dso.mil/dsop/virtualitics/odin/odin_app/-/jobs/7858163
Definition of Done
Justifications:
-
All findings have been justified -
Justifications have been provided to the container hardening team
Approval Process:
-
Findings Approver has reviewed and approved all justifications -
Approval request has been sent to Authorizing Official -
Approval request has been processed by Authorizing Official