Open ryanh-orca opened 5 months ago
Hi, The following CVEs have been reported from trivy for both 7.1.262 and 7.1.263. Is there a plan to patch these CVEs?
CVE-2022-48303,CVE-2023-39804 | MEDIUM | tar | 1.34+dfsg-1.2 | 1.34+dfsg-1.2+deb12u1 CVE-2023-7008,CVE-2023-7008 | MEDIUM | libsystemd0,libudev1 | 252.17-1~deb12u1 | 252.21-1~deb12u1 CVE-2023-6246,CVE-2023-6780 | MEDIUM | libc6,libc-bin | 2.36-9+deb12u3 | 2.36-9+deb12u4 CVE-2024-28085 | MEDIUM | bsdutils,libblkid1,libblkid-dev,libmount1,libmount-dev,libsmartcols1,libuuid1,mount,util-linux,util-linux-extra,uuid-dev | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-33601 | MEDIUM | Container | reflector | libc6 | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-33601 | MEDIUM | Container | reflector | libc-bin | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-2961 | MEDIUM | Container | reflector | libc6 | 2.36-9+deb12u4 | 2.36-9+deb12u6 CVE-2024-2961 | MEDIUM | Container | reflector | libc-bin | 2.36-9+deb12u4 | 2.36-9+deb12u6 CVE-2024-33600 | MEDIUM | Container | reflector | libc6 | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-33600 | MEDIUM | Container | reflector | libc-bin | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-28085 | MEDIUM | Container | reflector | bsdutils | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | libblkid1 | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | libmount1 | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | libsmartcols1 | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | libuuid1 | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | mount | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | util-linux | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | util-linux-extra | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-33599 | MEDIUM | Container | reflector | libc6 | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-33599 | MEDIUM | Container | reflector | libc-bin | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-33602 | MEDIUM | Container | reflector | libc6 | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-33602 | MEDIUM | Container | reflector | libc-bin | 2.36-9+deb12u4 | 2.36-9+deb12u7 [Uploading reflector.json…]()
Hi, The following CVEs have been reported from trivy for both 7.1.262 and 7.1.263. Is there a plan to patch these CVEs?
CVE-2022-48303,CVE-2023-39804 | MEDIUM | tar | 1.34+dfsg-1.2 | 1.34+dfsg-1.2+deb12u1 CVE-2023-7008,CVE-2023-7008 | MEDIUM | libsystemd0,libudev1 | 252.17-1~deb12u1 | 252.21-1~deb12u1 CVE-2023-6246,CVE-2023-6780 | MEDIUM | libc6,libc-bin | 2.36-9+deb12u3 | 2.36-9+deb12u4 CVE-2024-28085 | MEDIUM | bsdutils,libblkid1,libblkid-dev,libmount1,libmount-dev,libsmartcols1,libuuid1,mount,util-linux,util-linux-extra,uuid-dev | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-33601 | MEDIUM | Container | reflector | libc6 | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-33601 | MEDIUM | Container | reflector | libc-bin | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-2961 | MEDIUM | Container | reflector | libc6 | 2.36-9+deb12u4 | 2.36-9+deb12u6 CVE-2024-2961 | MEDIUM | Container | reflector | libc-bin | 2.36-9+deb12u4 | 2.36-9+deb12u6 CVE-2024-33600 | MEDIUM | Container | reflector | libc6 | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-33600 | MEDIUM | Container | reflector | libc-bin | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-28085 | MEDIUM | Container | reflector | bsdutils | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | libblkid1 | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | libmount1 | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | libsmartcols1 | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | libuuid1 | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | mount | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | util-linux | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-28085 | MEDIUM | Container | reflector | util-linux-extra | 2.38.1-5+b1 | 2.38.1-5+deb12u1 CVE-2024-33599 | MEDIUM | Container | reflector | libc6 | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-33599 | MEDIUM | Container | reflector | libc-bin | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-33602 | MEDIUM | Container | reflector | libc6 | 2.36-9+deb12u4 | 2.36-9+deb12u7 CVE-2024-33602 | MEDIUM | Container | reflector | libc-bin | 2.36-9+deb12u4 | 2.36-9+deb12u7 [Uploading reflector.json…]()