search

canonical / bundle-kubeflow

Charmed Kubeflow
Apache License 2.0
103 stars 50 forks source link

CVE scan of v1.7 upstream images shows regression in comparison to Charmed Kubeflow images #553

Open i-chvets opened 1 year ago

i-chvets commented 1 year ago

Descripition

CVE scan of v1.7 upstream images shows some regression in comparison to Charmed Kubeflow images

Upstream v1.7 scan results Tag: v1.7.0-rc.1 Date: 2023-03-08 CVEs per image: IMAGE BASE CRITICAL HIGH MEDIUM LOW
profile-controller:v1.7.0-rc.1 debian:11.6 1 4 2 1
kfam:v1.7.0-rc.1 debian:11.6 0 11 5 1
notebook-controller:v1.7.0-rc.1 debian:11.6 0 7 2 1
jupyter-tensorflow-cuda-full:v1.7.0-rc.1 ubuntu:20.04 0 1 3 0
jupyter-tensorflow-cuda:v1.7.0-rc.1 ubuntu:20.04 0 1 3 0
jupyter-tensorflow-full:v1.7.0-rc.1 ubuntu:20.04 0 1 3 0
jupyter-tensorflow:v1.7.0-rc.1 ubuntu:20.04 0 1 3 0
jupyter-pytorch-cuda-full:v1.7.0-rc.1 ubuntu:20.04 1 1 3 0
jupyter-pytorch-cuda:v1.7.0-rc.1 ubuntu:20.04 1 1 3 0
jupyter-pytorch-full:v1.7.0-rc.1 ubuntu:20.04 1 1 3 0
jupyter-pytorch:v1.7.0-rc.1 ubuntu:20.04 1 1 3 0
jupyter:v1.7.0-rc.1 ubuntu:20.04 0 1 3 0
base:v1.7.0-rc.1 ubuntu:20.04 0 0 2 0
ubuntu:20.04 ubuntu:20.04 0 0 4 0
gcr.io/distroless/base:latest debian:11.6 0 0 0 0
Charmed Kubeflow results for image rebuilt and published for v1.6 ag: v1.6.1 Date: 2023.2.1 CVEs per image: IMAGE BASE CRITICAL HIGH MEDIUM LOW
profile-controller:v1.6.1 debian:11.6 0 0 1 0
kfam:v1.6.1 debian:11.6 0 6 3 0
notebook-controller:v1.6.1 debian:11.6 0 6 2 0
jupyter-web-app:v1.6.1 debian:11.6 0 1 0 0
jupyter-tensorflow-cuda-full:v1.6.1 ubuntu:20.04 0 0 0 0
jupyter-tensorflow-full:v1.6.1 ubuntu:20.04 0 6 98 4
jupyter-tensorflow-cuda:v1.6.1 ubuntu:20.04 0 0 0 0
jupyter-tensorflow:v1.6.1 ubuntu:20.04 0 6 98 4
jupyter-pytorch-cuda-full:v1.6.1 ubuntu:20.04 1 0 0 0
jupyter-pytorch-full:v1.6.1 ubuntu:20.04 1 0 0 0
jupyter-pytorch-cuda:v1.6.1 ubuntu:20.04 1 0 0 0
jupyter-pytorch:v1.6.1 ubuntu:20.04 1 0 0 0
jupyter-scipy:v1.6.1 ubuntu:20.04 0 1 0 0
jupyter:v1.6.1 ubuntu:20.04 0 0 0 0
base:v1.6.1 ubuntu:20.04 0 0 0 0
ubuntu:20.04 ubuntu:20.04 0 0 0 0
gcr.io/distroless/base:debug debian:11.6 0 0 0 0
i-chvets commented 1 year ago
Locally rebuilt upstream v1.7 images scan results Tag: v1.7.0 Date: 2023-05-15 CVEs per image: IMAGE BASE CRITICAL HIGH MEDIUM LOW
base:v1.7.0 ubuntu:20.04 0 0 0 0
ubuntu:20.04 ubuntu:20.04 0 0 0 0
jupyter-scipy:v1.7.0 ubuntu:20.04 1 2 1 0
jupyter-pytorch-full:v1.7.0 ubuntu:20.04 1 1 1 0
jupyter-pytorch-cuda-full:v1.7.0 ubuntu:20.04 1 1 1 0
jupyter-tensorflow-full:v1.7.0 ubuntu:20.04 1 19 3 0
jupyter-tensorflow-cuda-full:v1.7.0 ubuntu:20.04 1 17 2 0
jupyter-web-app:v1.7.0 debian:11.7 0 0 1 0
notebook-controller:v1.7.0 debian:11.7 0 64 22 0
kfam:v1.7.0 debian:11.7 0 12 5 0
profile-controller:v1.7.0 debian:11.7 1 61 22 0