Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vulnerability scanning for docker images #231

Closed
terrytangyuan opened this issue Apr 20, 2020 · 2 comments
Closed

Vulnerability scanning for docker images #231

terrytangyuan opened this issue Apr 20, 2020 · 2 comments
Assignees
@terrytangyuan
Labels
graduation

Comments

@terrytangyuan
Copy link
Member

Part of #217. Docker images must be scanned for vulnerabilities and known vulnerabilities published.
@terrytangyuan
Copy link
Member Author

terrytangyuan commented Apr 21, 2020
edited

👋 @jtfogarty @krishnadurai given that you've done something similar in #193, would you be able to help with this one? Anyone else who are interested please comment here as well.

@terrytangyuan
Copy link
Member Author

terrytangyuan commented May 1, 2020
edited

We've changed to use distroless image and the vulnerabilities are all negligible already:

anchore-cli image vuln docker.io/terrytangyuan/mpi-operator:0.1.0 all
Vulnerability ID        Package                          Severity          Fix         CVE Refs                Vulnerability URL
CVE-2007-6755           libssl1.1-1.1.0l-1~deb9u1        Negligible        None        CVE-2007-6755           https://security-tracker.debian.org/tracker/CVE-2007-6755
CVE-2007-6755           openssl-1.1.0l-1~deb9u1          Negligible        None        CVE-2007-6755           https://security-tracker.debian.org/tracker/CVE-2007-6755
CVE-2010-0928           libssl1.1-1.1.0l-1~deb9u1        Negligible        None        CVE-2010-0928           https://security-tracker.debian.org/tracker/CVE-2010-0928
CVE-2010-0928           openssl-1.1.0l-1~deb9u1          Negligible        None        CVE-2010-0928           https://security-tracker.debian.org/tracker/CVE-2010-0928
CVE-2010-4051           libc6-2.24-11+deb9u4             Negligible        None        CVE-2010-4051           https://security-tracker.debian.org/tracker/CVE-2010-4051
CVE-2010-4052           libc6-2.24-11+deb9u4             Negligible        None        CVE-2010-4052           https://security-tracker.debian.org/tracker/CVE-2010-4052
CVE-2010-4756           libc6-2.24-11+deb9u4             Negligible        None        CVE-2010-4756           https://security-tracker.debian.org/tracker/CVE-2010-4756
CVE-2015-8985           libc6-2.24-11+deb9u4             Negligible        None        CVE-2015-8985           https://security-tracker.debian.org/tracker/CVE-2015-8985
CVE-2018-20796          libc6-2.24-11+deb9u4             Negligible        None        CVE-2018-20796          https://security-tracker.debian.org/tracker/CVE-2018-20796
CVE-2019-1010022        libc6-2.24-11+deb9u4             Negligible        None        CVE-2019-1010022        https://security-tracker.debian.org/tracker/CVE-2019-1010022
CVE-2019-1010023        libc6-2.24-11+deb9u4             Negligible        None        CVE-2019-1010023        https://security-tracker.debian.org/tracker/CVE-2019-1010023
CVE-2019-1010024        libc6-2.24-11+deb9u4             Negligible        None        CVE-2019-1010024        https://security-tracker.debian.org/tracker/CVE-2019-1010024
CVE-2019-1010025        libc6-2.24-11+deb9u4             Negligible        None        CVE-2019-1010025        https://security-tracker.debian.org/tracker/CVE-2019-1010025
CVE-2019-6488           libc6-2.24-11+deb9u4             Negligible        None        CVE-2019-6488           https://security-tracker.debian.org/tracker/CVE-2019-6488
CVE-2019-7309           libc6-2.24-11+deb9u4             Negligible        None        CVE-2019-7309           https://security-tracker.debian.org/tracker/CVE-2019-7309
CVE-2019-9192           libc6-2.24-11+deb9u4             Negligible        None        CVE-2019-9192           https://security-tracker.debian.org/tracker/CVE-2019-9192

@terrytangyuan terrytangyuan self-assigned this May 1, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@terrytangyuan terrytangyuan

Labels
graduation
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@terrytangyuan