search

greenbone / notus-scanner

Notus is a vulnerability scanner for creating results from local security checks
https://greenbone.github.io/docs/
GNU Affero General Public License v3.0
41 stars 11 forks source link

False positives (negatives?) received on nvts due to ubuntu fips packages not being understood by Notus #552

Open mguzsklk opened 1 year ago

mguzsklk commented 1 year ago

Hi,

I'm using the latest community edition of greenbone and have discovered that my FIPS compliant hosts are being reported as having vulnerabilities due to the scanner not interpreting the fips in the package names. For Example: 

Detection Result
Vulnerable package:   openssl
Installed version:    openssl-1.1.1f-1ubuntu2.fips.18
Fixed version:      >=openssl-1.1.1f-1ubuntu2.15

I posted a question on the community board about this and they asked me to open an issue with you.

Let me know if you need more information

Cheers

Mark Guz

cfi-gb commented 1 year ago

Related to: #313 (Something similar solved for RPM based package checks)