-
Notifications
You must be signed in to change notification settings - Fork 495
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CVE-2024-2961 in registry.k8s.io/build-image/distroless-iptables:v0.5.3
#3593
Comments
+1 thanks |
yes, will bump together with the upcoming go updates |
/assign |
➜ trivy image --exit-code 1 --ignore-unfixed --severity MEDIUM,HIGH,CRITICAL registry.k8s.io/build-image/distroless-iptables:v0.5.4
2024-06-04T11:00:22.888-0700 INFO Need to update DB
2024-06-04T11:00:22.888-0700 INFO DB Repository: ghcr.io/aquasecurity/trivy-db
2024-06-04T11:00:22.888-0700 INFO Downloading DB...
47.72 MiB / 47.72 MiB [---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------] 100.00% 17.13 MiB p/s 3.0s
2024-06-04T11:00:27.195-0700 INFO Vulnerability scanning is enabled
2024-06-04T11:00:27.196-0700 INFO Secret scanning is enabled
2024-06-04T11:00:27.196-0700 INFO If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-06-04T11:00:27.196-0700 INFO Please see also https://aquasecurity.github.io/trivy/v0.48/docs/scanner/secret/#recommendation for faster secret detection
2024-06-04T11:00:30.690-0700 INFO Detected OS: debian
2024-06-04T11:00:30.690-0700 INFO Detecting Debian vulnerabilities...
2024-06-04T11:00:30.701-0700 INFO Number of language-specific files: 0
registry.k8s.io/build-image/distroless-iptables:v0.5.4 (debian 12.5)
Total: 0 (MEDIUM: 0, HIGH: 0, CRITICAL: 0) /close |
@aramase: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
What happened:
CVE in
registry.k8s.io/build-image/distroless-iptables:v0.5.3
imageWhat you expected to happen:
New distroless-iptables images with CVEs resolved.
The text was updated successfully, but these errors were encountered: