search

charlescng / docker-containers

Docker containers and unRAID docker templates
10 stars 11 forks source link

Older libraries result in 3 High severity CVEs #12

Closed techie2000 closed 3 years ago

techie2000 commented 3 years ago 
+-------------+------------------+----------+--------------------------+--------------------------+--------------------------------------+
|   LIBRARY   | VULNERABILITY ID | SEVERITY |    INSTALLED VERSION     |      FIXED VERSION       |                TITLE                 |
+-------------+------------------+----------+--------------------------+--------------------------+--------------------------------------+
| libssl1.0.0 | CVE-2020-1971    | HIGH     | 1.0.2n-1ubuntu5.3        | 1.0.2n-1ubuntu5.5        | openssl: EDIPARTYNAME                |
|             |                  |          |                          |                          | NULL pointer de-reference            |
|             |                  |          |                          |                          | -->avd.aquasec.com/nvd/cve-2020-1971 |
+-------------+                  +          +--------------------------+--------------------------+                                      +
| libssl1.1   |                  |          | 1.1.1-1ubuntu2.1~18.04.6 | 1.1.1-1ubuntu2.1~18.04.7 |                                      |
|             |                  |          |                          |                          |                                      |
|             |                  |          |                          |                          |                                      |
+-------------+                  +          +                          +                          +                                      +
| openssl     |                  |          |                          |                          |                                      |
|             |                  |          |                          |                          |                                      |
|             |                  |          |                          |                          |                                      |
+-------------+------------------+----------+--------------------------+--------------------------+--------------------------------------+
charlescng commented 3 years ago 
apt list openssl*
Listing... Done
openssl/bionic-updates,bionic-security 1.1.1-1ubuntu2.1~18.04.9 amd64 [upgradable from: 1.1.1-1ubuntu2.1~18.04.6]
openssl1.0/bionic-updates,bionic-security 1.0.2n-1ubuntu5.6 amd64

The package was updated but never installed as part of the image build.

charlescng commented 3 years ago 
apt list openssl*
Listing... Done
openssl/now 1.1.1f-1ubuntu2.3 amd64 [installed,local]