Several vulnerabilities found with Trivy

Question

Several vulnerabilities found with Trivy

ecniiv opened this issue 3 years ago · 5 comments

Hello,

According to Trivy scanner, there is several vulnerabilities found in the docker image, and some can be fixed with newer version of packages.

quay.io/mittwald/kube-httpcache:stable (debian 9.13)
====================================================
Total: 589 (UNKNOWN: 6, LOW: 29, MEDIUM: 290, HIGH: 229, CRITICAL: 35)

Is there any change to use newer version of golang and debian inside the Dockerfile to reduce as maximum as possible the number of CVE ?

Thanks,
ecniiv

Answer 1 · 2022-01-19T02:06:33.000Z

There has not been any activity to this issue in the last 14 days. It will automatically be closed after 7 more days. Remove the stale label to prevent this.

Answer 2 · 2022-01-26T07:46:18.000Z

Apologies, this should not have been closed. Will investigate shortly.

Answer 3 · 2022-02-10T02:07:55.000Z

There has not been any activity to this issue in the last 14 days. It will automatically be closed after 7 more days. Remove the stale label to prevent this.

Answer 4 · 2022-02-14T17:06:28.000Z

Hi,

Did you investigate on these vulnerabilities ?

Answer 5 · 2022-03-02T01:56:49.000Z

There has not been any activity to this issue in the last 14 days. It will automatically be closed after 7 more days. Remove the stale label to prevent this.