Open IanT111 opened 3 months ago
When performing a snyk IAC scan against the container image we are receiving 1 Critical and 1 High severity issues in v5.18.1
snyk container test neo4j:5.18.1 --severity-threshold=high
No high or critical vulnerabilities found
1 Critical and 1 High severity vulnerabilities found
Testing neo4j:5.18.1... ✗ High severity vulnerability found in systemd/libsystemd0 Description: Allocation of Resources Without Limits or Throttling Info: https://security.snyk.io/vuln/SNYK-DEBIAN11-SYSTEMD-6277510 Introduced through: apt@2.2.4, util-linux/bsdutils@1:2.36.1-8+deb11u1, util-linux/mount@2.36.1-8+deb11u1, procps@2:3.3.[17](https://github.com/SSEPLC/cceo-prod-private-container-image/actions/runs/8420409320/job/23055058492#step:6:18)-5, systemd/libudev1@247.3-7+deb11u4 From: apt@2.2.4 > systemd/libsystemd0@247.3-7+deb11u4 From: util-linux/bsdutils@1:2.36.1-8+deb11u1 > systemd/libsystemd0@247.3-7+deb11u4 From: apt@2.2.4 > apt/libapt-pkg6.0@2.2.4 > systemd/libsystemd0@247.3-7+deb11u4 and 5 more... Image layer: 'apt-get install -y curl gcc git jq make procps tini wget' ✗ Critical severity vulnerability found in zlib/zlib1g Description: Integer Overflow or Wraparound Info: https://security.snyk.io/vuln/SNYK-DEBIAN11-ZLIB-6008961 Introduced through: zlib/zlib1g@1:1.2.11.dfsg-2+deb11u2 From: zlib/zlib1g@1:1.2.11.dfsg-2+deb11u2
Description
When performing a snyk IAC scan against the container image we are receiving 1 Critical and 1 High severity issues in v5.18.1
Steps to reproduce
snyk container test neo4j:5.18.1 --severity-threshold=highExpected behaviour
No high or critical vulnerabilities found
Actual behaviour
1 Critical and 1 High severity vulnerabilities found