cve issue formatted with jq -r '.matches[] | .vulnerability | [.id, .severity, .description] | @tsv' #8
Labels
Comments
joe-kimmel-vmw
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Latest lifecycle release v0.16.0 triggered CVE(s) from Grype. For further details, see: https://github.com/joe-kimmel-vmw/lifecycle/actions/runs/5381680981 json: GHSA-232p-vwff-86mp High Docker Swarm encrypted overlay network may be unauthenticated
GHSA-232p-vwff-86mp High Docker Swarm encrypted overlay network may be unauthenticated
GHSA-232p-vwff-86mp High Docker Swarm encrypted overlay network may be unauthenticated
GHSA-259w-8hf6-59c2 Medium OCI image importer memory exhaustion in github.com/containerd/containerd
GHSA-259w-8hf6-59c2 Medium OCI image importer memory exhaustion in github.com/containerd/containerd
GHSA-259w-8hf6-59c2 Medium OCI image importer memory exhaustion in github.com/containerd/containerd
GHSA-33pg-m6jh-5237 Medium Docker Swarm encrypted overlay network traffic may be unencrypted
GHSA-33pg-m6jh-5237 Medium Docker Swarm encrypted overlay network traffic may be unencrypted
GHSA-33pg-m6jh-5237 Medium Docker Swarm encrypted overlay network traffic may be unencrypted
GHSA-6wrf-mxfj-pf5p Medium Docker Swarm encrypted overlay network with a single endpoint is unauthenticated
GHSA-6wrf-mxfj-pf5p Medium Docker Swarm encrypted overlay network with a single endpoint is unauthenticated
GHSA-6wrf-mxfj-pf5p Medium Docker Swarm encrypted overlay network with a single endpoint is unauthenticated
GHSA-f3fp-gc8g-vw66 Medium Default inheritable capabilities for linux container should be empty
GHSA-f3fp-gc8g-vw66 Medium Default inheritable capabilities for linux container should be empty
GHSA-f3fp-gc8g-vw66 Medium Default inheritable capabilities for linux container should be empty
GHSA-f3fp-gc8g-vw66 Medium Default inheritable capabilities for linux container should be empty
GHSA-g2j6-57v7-gm8c Medium runc AppArmor bypass with symlinked /proc
GHSA-g2j6-57v7-gm8c Medium runc AppArmor bypass with symlinked /proc
GHSA-g2j6-57v7-gm8c Medium runc AppArmor bypass with symlinked /proc
GHSA-g2j6-57v7-gm8c Medium runc AppArmor bypass with symlinked /proc
GHSA-hmfx-3pcx-653p Medium Supplementary groups are not set up properly in github.com/containerd/containerd
GHSA-hmfx-3pcx-653p Medium Supplementary groups are not set up properly in github.com/containerd/containerd
GHSA-hmfx-3pcx-653p Medium Supplementary groups are not set up properly in github.com/containerd/containerd
GHSA-m8cg-xc2p-r3fc Low rootless:
/sys/fs/cgroupis writable when cgroupns isn't unshared in runcGHSA-m8cg-xc2p-r3fc Low rootless:
/sys/fs/cgroupis writable when cgroupns isn't unshared in runcGHSA-m8cg-xc2p-r3fc Low rootless:
/sys/fs/cgroupis writable when cgroupns isn't unshared in runcGHSA-m8cg-xc2p-r3fc Low rootless:
/sys/fs/cgroupis writable when cgroupns isn't unshared in runcGHSA-v95c-p5hm-xq8f Medium Overflow in netlink bytemsg length field allows attacker to override netlink-based container configuration
GHSA-v95c-p5hm-xq8f Medium Overflow in netlink bytemsg length field allows attacker to override netlink-based container configuration
GHSA-v95c-p5hm-xq8f Medium Overflow in netlink bytemsg length field allows attacker to override netlink-based container configuration
GHSA-v95c-p5hm-xq8f Medium Overflow in netlink bytemsg length field allows attacker to override netlink-based container configuration
GHSA-vvpx-j8f3-3w6h High Uncontrolled Resource Consumption
GHSA-vvpx-j8f3-3w6h High Uncontrolled Resource Consumption
GHSA-vvpx-j8f3-3w6h High Uncontrolled Resource Consumption
The text was updated successfully, but these errors were encountered: