![[Jenkins]](/cbi/static/514dd2e5/images/svgs/logo.svg){kind=logo}
Started by user Frederic Gurr Running as Frederic Gurr [Pipeline] Start of Pipeline [Pipeline] echo [WARNING] label option is deprecated. To use a static pod template, use the 'inheritFrom' option. [Pipeline] podTemplate [Pipeline] { [Pipeline] node Running on fmlw3-ubuntu1804 in /home/genie.cbi/jenkins-agent/workspace/Sonatype_PoC/docker [Pipeline] { [Pipeline] stage [Pipeline] { (Declarative: Tool Install) [Pipeline] tool [Pipeline] envVarsForTool [Pipeline] } [Pipeline] // stage [Pipeline] withEnv [Pipeline] { [Pipeline] stage [Pipeline] { (Policy Check) [Pipeline] tool [Pipeline] envVarsForTool [Pipeline] withEnv [Pipeline] { [Pipeline] sh + echo Hello World Hello World [Pipeline] nexusPolicyEvaluation [INFO] 2023-09-06T08:15:27.666Z Scanning application dockertest. [INFO] Could not discover git commit hash via automation [INFO] Scan target: container:eclipsecbi/jiro-agent-basic:latest [INFO] Scan configuration properties: [INFO] dirExcludes=null [INFO] dirIncludes=null [INFO] fileExcludes= [INFO] fileIncludes= [INFO] 2023-09-06T08:15:38.537Z Starting scanning target: container:eclipsecbi/jiro-agent-basic:latest [INFO] NEXUS_CONTAINER_SCANNING_SCANNER_IMAGE missing. [INFO] NEXUS_CONTAINER_SCANNING_REGISTRY_URL missing. [INFO] NEXUS_CONTAINER_SCANNING_REGISTRY_USER missing. [INFO] NEXUS_CONTAINER_SCANNING_REGISTRY_PASSWORD missing. [INFO] NEXUS_CONTAINER_IMAGE_REGISTRY_USER missing. [INFO] NEXUS_CONTAINER_IMAGE_REGISTRY_PASSWORD missing. [INFO] NEXUS_CONTAINER_SCANNING_MOUNT_PATH missing. [INFO] Using mount path: /home/genie.cbi/jenkins-agent/workspace/Sonatype_PoC/docker@tmp [INFO] Extracting registry, image and tag from: container:eclipsecbi/jiro-agent-basic:latest [INFO] Extracted registry:null, image:eclipsecbi/jiro-agent-basic, tag:latest [INFO] Invoking local scan for: container:eclipsecbi/jiro-agent-basic:latest [INFO] latest: Pulling from neuvector/scanner [INFO] 7264a8db6415: Already exists [INFO] 961114906c2a: Pulling fs layer [INFO] 5f41923d1b69: Pulling fs layer [INFO] a02bb671c2c2: Pulling fs layer [INFO] 961114906c2a: Download complete [INFO] 5f41923d1b69: Verifying Checksum [INFO] 5f41923d1b69: Download complete [INFO] 961114906c2a: Pull complete [INFO] 5f41923d1b69: Pull complete [INFO] a02bb671c2c2: Verifying Checksum [INFO] a02bb671c2c2: Download complete [INFO] 2023-09-06T08:15:43.538Z Scanned 1 files so far [INFO] a02bb671c2c2: Pull complete [INFO] Digest: sha256:f68d07bfb0e582572c8d235cdc7d7e58a4c407a62f3fe7a0b73459a748072995 [INFO] Status: Downloaded newer image for registry.hub.docker.com/neuvector/scanner:latest [INFO] registry.hub.docker.com/neuvector/scanner:latest [INFO] 2023-09-06T08:15:44.922|INFO|SCN|container.Connect: - endpoint=unix:///var/run/docker.sock [INFO] 2023-09-06T08:15:44.922|DEBU|SCN|main.newTasker: - showDebug=true [INFO] 2023-09-06T08:15:44.922|DEBU|SCN|main.main: Use scannerTask [INFO] 2023-09-06T08:15:44.922|DEBU|SCN|common.LoadCveDb: New DB found - update=2023-09-04T10:16:38Z version=3.21 [INFO] 2023-09-06T08:15:44.923|INFO|SCN|common.LoadCveDb: Expand new DB - version=3.21 [INFO] 2023-09-06T08:15:48.537Z Scanned 1 files so far [INFO] 2023-09-06T08:15:53.537Z Scanned 1 files so far [INFO] 2023-09-06T08:15:56.952|DEBU|SCN|common.readCveDbMeta: - osname=ubuntu path=/tmp/neuvector/db/ vuls=41848 [INFO] 2023-09-06T08:15:58.221|DEBU|SCN|common.readCveDbMeta: - osname=debian path=/tmp/neuvector/db/ vuls=61961 [INFO] 2023-09-06T08:15:58.538Z Scanned 1 files so far [INFO] 2023-09-06T08:15:59.694|DEBU|SCN|common.readCveDbMeta: - osname=centos path=/tmp/neuvector/db/ vuls=77833 [INFO] 2023-09-06T08:16:00.554|DEBU|SCN|common.readCveDbMeta: - osname=alpine path=/tmp/neuvector/db/ vuls=84189 [INFO] 2023-09-06T08:16:00.703|DEBU|SCN|common.readCveDbMeta: - osname=amazon path=/tmp/neuvector/db/ vuls=86868 [INFO] 2023-09-06T08:16:01.051|DEBU|SCN|common.readCveDbMeta: - osname=oracle path=/tmp/neuvector/db/ vuls=90445 [INFO] 2023-09-06T08:16:01.08 |DEBU|SCN|common.readCveDbMeta: - osname=mariner path=/tmp/neuvector/db/ vuls=92399 [INFO] 2023-09-06T08:16:03.537Z Scanned 1 files so far [INFO] 2023-09-06T08:16:06.637|DEBU|SCN|common.readCveDbMeta: - osname=suse path=/tmp/neuvector/db/ vuls=108525 [INFO] 2023-09-06T08:16:07.061|DEBU|SCN|main.(*Tasker).Run: [INFO] 2023-09-06T08:16:07.062|DEBU|SCN|main.(*Tasker).Run: - args=[-t reg -u unix:///var/run/docker.sock -i /tmp/0baef5ad-dad8-4063-8d6d-3410457b9f36_i.json -o /tmp/0baef5ad-dad8-4063-8d6d-3410457b9f36_o.json] cmd=/usr/local/bin/scannerTask wpath=/tmp/images/0baef5ad-dad8-4063-8d6d-3410457b9f36 [INFO] 2023-09-06T08:16:07.086|DEBU|SCT|main.main: - imageWorkingPath=/tmp/images/0baef5ad-dad8-4063-8d6d-3410457b9f36 [INFO] 2023-09-06T08:16:07.086|INFO|SCT|main.main: Running ... [INFO] 2023-09-06T08:16:07.087|DEBU|SCT|main.(*taskMain).ScanImage: - Registry= base= image=eclipsecbi/jiro-agent-basic:latest [INFO] 2023-09-06T08:16:07.087|INFO|SCT|container.ConnectDocker: - endpoint=unix:///var/run/docker.sock [INFO] 2023-09-06T08:16:07.088|INFO|SCT|container._connect: Connecting to docker - endpoint=unix:///var/run/docker.sock [INFO] 2023-09-06T08:16:07.105|INFO|SCT|container._connect: docker connected - endpoint=unix:///var/run/docker.sock version=&{ApiVersion:1.41 Arch:amd64 GitCommit:a89b842 GoVersion:go1.17.11 KernelVersion:5.4.0-1105-azure Os:linux Version:20.10.17} [INFO] 2023-09-06T08:16:07.118|INFO|SCT|container._connect: - version=&{ApiVersion:1.41 Arch:amd64 GitCommit:a89b842 GoVersion:go1.17.11 KernelVersion:5.4.0-1105-azure Os:linux Version:20.10.17} [INFO] 2023-09-06T08:16:07.12 |INFO|SCT|container.dockerConnect: - selfID=3e83120083cf91c12ded47a1495d89ce71f51108a643a9c01028d288e16a6ef9 sockPath=/var/run/docker.sock [INFO] 2023-09-06T08:16:07.12 |ERRO|SCT|scan.(*ScanUtil).LoadLocalImage: Failed to get local image - error=Image not found [INFO] 2023-09-06T08:16:07.121|INFO|SCT|main.main: Exiting ... - imageWorkingPath=/tmp/images/0baef5ad-dad8-4063-8d6d-3410457b9f36 used=0.034481745 [INFO] 2023-09-06T08:16:07.123|DEBU|SCN|main.(*Tasker).getResultFile: Completed [INFO] 2023-09-06T08:16:07.123|DEBU|SCN|main.(*Tasker).Run: [INFO] 2023-09-06T08:16:07.124|DEBU|SCN|main.(*Tasker).Run: - args=[-t reg -u unix:///var/run/docker.sock -i /tmp/8c023b63-4e7e-4414-9929-e9cf5d723bde_i.json -o /tmp/8c023b63-4e7e-4414-9929-e9cf5d723bde_o.json] cmd=/usr/local/bin/scannerTask wpath=/tmp/images/8c023b63-4e7e-4414-9929-e9cf5d723bde [INFO] 2023-09-06T08:16:07.146|DEBU|SCT|main.main: - imageWorkingPath=/tmp/images/8c023b63-4e7e-4414-9929-e9cf5d723bde [INFO] 2023-09-06T08:16:07.146|INFO|SCT|main.main: Running ... [INFO] 2023-09-06T08:16:07.146|DEBU|SCT|main.(*taskMain).ScanImage: - Registry=https://registry.hub.docker.com base= image=eclipsecbi/jiro-agent-basic:latest [INFO] 2023-09-06T08:16:07.146|DEBU|SCT|scan.NewRegClient: - url=https://registry.hub.docker.com [INFO] 2023-09-06T08:16:07.146|DEBU|SCT|registry.(*Registry).ManifestRequest: - ref=latest repository=eclipsecbi/jiro-agent-basic schema=2 url=https://registry.hub.docker.com/v2/eclipsecbi/jiro-agent-basic/manifests/latest [INFO] 2023-09-06T08:16:07.322|DEBU|SCT|registry.(*Registry).ImageConfigSpecV1: - digest=sha256:93626aff8c002f6bf40ffb70a20591bb9dad8fad1581970da84421844652009e [INFO] 2023-09-06T08:16:07.322|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:93626aff8c002f6bf40ffb70a20591bb9dad8fad1581970da84421844652009e [INFO] 2023-09-06T08:16:07.571|DEBU|SCT|scan.(*RegClient).buildV2ImageInfo: v2 manifest - cmds=26 created=2023-08-23 20:50:53.2883608 +0000 UTC digest=sha256:79f7641dfdd5be210001b4f55ff61aa9c51cd12a33677d725ec4e98966b861f9 layers=14 version=2 [INFO] 2023-09-06T08:16:07.571|DEBU|SCT|registry.(*Registry).ManifestRequest: - ref=latest repository=eclipsecbi/jiro-agent-basic schema=1 url=https://registry.hub.docker.com/v2/eclipsecbi/jiro-agent-basic/manifests/latest [INFO] 2023-09-06T08:16:07.722|DEBU|SCT|scan.(*RegClient).GetImageInfo: v1 manifest request - cmds=26 created=2023-08-23 20:50:53.2883608 +0000 UTC digest=sha256:c4ed7f902461f8f251323dd885a967c23c2d8c3777adb122b4ebed7889c7539a layers=26 version=1 [INFO] 2023-09-06T08:16:07.722|DEBU|SCT|scan.(*RegClient).DownloadRemoteImage: - name=eclipsecbi/jiro-agent-basic [INFO] 2023-09-06T08:16:07.722|DEBU|SCT|scan.downloadLayers.func2: skip - layer=sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 [INFO] 2023-09-06T08:16:07.722|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:e687b5289a67c80fd305d9f16f32f093f3f4cd8084055c75b1855f2c2e521998 [INFO] 2023-09-06T08:16:07.722|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:10799af9cc7c1d13eb11781c5d18cc25830ff6209967d6f30cbd46a442e48ef6 [INFO] 2023-09-06T08:16:07.722|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:a3ed95caeb02ffe68cdd9fd84406680ae93d633cb16422d00e8a7c22955b46d4 Size:0 TarSize:0 err:<nil>} [INFO] 2023-09-06T08:16:07.722|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:5a390dfdd507f3dc49af4e6175cdd5c9004f26a825b8696fb86e616367103a7b [INFO] 2023-09-06T08:16:07.723|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:2b362f22b76074fcec5862b2f806c3643b5120b9a55ed7ff55219dd0a3ccadbf [INFO] 2023-09-06T08:16:07.723|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:2e60d4cdc9a9c662655c6563768ec0044445eac170e47c7cabe6c224da8cefc4 [INFO] 2023-09-06T08:16:07.723|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:7ed812d0dbca3f5c6e53de60b5b91140e72b83dd7106601bf198b5e93c050082 [INFO] 2023-09-06T08:16:07.723|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:89a623f1bcab59916f308a67689089f92f6974cbcdd22358b98c86602129e098 [INFO] 2023-09-06T08:16:07.723|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:a08f0d02c965d1e3974889d15a92bab33208141a41ad00ac09ee226bf42f06c1 [INFO] 2023-09-06T08:16:07.723|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:c996c371784727fd8a2cece53b17d9690a8a2ec6241df0eda2ed671102a5b2f0 [INFO] 2023-09-06T08:16:07.723|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:f83c0e234f4c7383504ab49a0475b44ab47ea813f9883de518e0c0ee719509bf [INFO] 2023-09-06T08:16:07.724|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:e32c1e62903b8698dc562aa495de9414229bc6daf206bbb8de0d9f0fa0c04107 [INFO] 2023-09-06T08:16:07.724|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:c722db24a050621ee87ea07acd5d066d3d6a94737c32012f27d73a1ad5cc645c [INFO] 2023-09-06T08:16:07.724|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:251a0ce50e2078c2d040e7315292c2ef636ccfbf24a2ec66862f7afc988f81d6 [INFO] 2023-09-06T08:16:07.724|DEBU|SCT|registry.(*Registry).DownloadLayer: - digest=sha256:a72f9c1c5c7fa018e794af102b6299a69fa9da08ee50c857defcf0d56593551b [INFO] 2023-09-06T08:16:08.038|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:5a390dfdd507f3dc49af4e6175cdd5c9004f26a825b8696fb86e616367103a7b Size:16739 TarSize:5089 err:<nil>} [INFO] 2023-09-06T08:16:08.121|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:c996c371784727fd8a2cece53b17d9690a8a2ec6241df0eda2ed671102a5b2f0 Size:0 TarSize:123 err:<nil>} [INFO] 2023-09-06T08:16:08.155|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:e687b5289a67c80fd305d9f16f32f093f3f4cd8084055c75b1855f2c2e521998 Size:1370647 TarSize:1211862 err:<nil>} [INFO] 2023-09-06T08:16:08.169|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:a08f0d02c965d1e3974889d15a92bab33208141a41ad00ac09ee226bf42f06c1 Size:210 TarSize:342 err:<nil>} [INFO] 2023-09-06T08:16:08.237|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:f83c0e234f4c7383504ab49a0475b44ab47ea813f9883de518e0c0ee719509bf Size:0 TarSize:116 err:<nil>} [INFO] 2023-09-06T08:16:08.318|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:2b362f22b76074fcec5862b2f806c3643b5120b9a55ed7ff55219dd0a3ccadbf Size:5248 TarSize:2277 err:<nil>} [INFO] 2023-09-06T08:16:08.391|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:e32c1e62903b8698dc562aa495de9414229bc6daf206bbb8de0d9f0fa0c04107 Size:1375895 TarSize:1214434 err:<nil>} [INFO] 2023-09-06T08:16:08.537Z Scanned 1 files so far [INFO] 2023-09-06T08:16:08.565|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:7ed812d0dbca3f5c6e53de60b5b91140e72b83dd7106601bf198b5e93c050082 Size:14680064 TarSize:5152980 err:<nil>} [INFO] 2023-09-06T08:16:08.656|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:89a623f1bcab59916f308a67689089f92f6974cbcdd22358b98c86602129e098 Size:1136 TarSize:723 err:<nil>} [INFO] 2023-09-06T08:16:08.717|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:2e60d4cdc9a9c662655c6563768ec0044445eac170e47c7cabe6c224da8cefc4 Size:5052 TarSize:2260 err:<nil>} [INFO] 2023-09-06T08:16:09.408|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:251a0ce50e2078c2d040e7315292c2ef636ccfbf24a2ec66862f7afc988f81d6 Size:42967448 TarSize:17929746 err:<nil>} [INFO] 2023-09-06T08:16:11.053|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:c722db24a050621ee87ea07acd5d066d3d6a94737c32012f27d73a1ad5cc645c Size:114096209 TarSize:50448716 err:<nil>} [INFO] 2023-09-06T08:16:11.694|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:a72f9c1c5c7fa018e794af102b6299a69fa9da08ee50c857defcf0d56593551b Size:137220211 TarSize:63533729 err:<nil>} [INFO] 2023-09-06T08:16:13.412|DEBU|SCT|scan.downloadLayers.func1: - res=&{layer:sha256:10799af9cc7c1d13eb11781c5d18cc25830ff6209967d6f30cbd46a442e48ef6 Size:356834776 TarSize:143895842 err:<nil>} [INFO] 2023-09-06T08:16:13.519|INFO|SCT|scan.getDpkgStatus: - file=/tmp/images/8c023b63-4e7e-4414-9929-e9cf5d723bde/sha256:a72f9c1c5c7fa018e794af102b6299a69fa9da08ee50c857defcf0d56593551b/var/lib/dpkg/status kernel= [INFO] 2023-09-06T08:16:13.537Z Scanned 1 files so far [INFO] 2023-09-06T08:16:13.543|INFO|SCT|scan.getDpkgStatus: - file=/tmp/images/8c023b63-4e7e-4414-9929-e9cf5d723bde/sha256:10799af9cc7c1d13eb11781c5d18cc25830ff6209967d6f30cbd46a442e48ef6/var/lib/dpkg/status kernel= [INFO] 2023-09-06T08:16:13.576|INFO|SCT|scan.getDpkgStatus: - file=/tmp/images/8c023b63-4e7e-4414-9929-e9cf5d723bde/sha256:251a0ce50e2078c2d040e7315292c2ef636ccfbf24a2ec66862f7afc988f81d6/var/lib/dpkg/status kernel= [INFO] 2023-09-06T08:16:13.729|INFO|SCT|scan.getDpkgStatus: - file=/tmp/images/8c023b63-4e7e-4414-9929-e9cf5d723bde/sha256:c722db24a050621ee87ea07acd5d066d3d6a94737c32012f27d73a1ad5cc645c/var/lib/dpkg/status kernel= [INFO] 2023-09-06T08:16:13.73 |DEBU|SCT|cvetools.(*CveTools).ScanImage: scan remote image - digest=sha256:79f7641dfdd5be210001b4f55ff61aa9c51cd12a33677d725ec4e98966b861f9 id=93626aff8c002f6bf40ffb70a20591bb9dad8fad1581970da84421844652009e layers=26 size=668573635 [INFO] 2023-09-06T08:16:13.873|INFO|SCT|cvetools.(*CveTools).ScanImage.func1: Scanning secrets .... [INFO] 2023-09-06T08:16:13.874|DEBU|SCT|cvetools.(*CveTools).getFeatures: - apps=2 features=168 namespace=&{Name:debian:10} [INFO] 2023-09-06T08:16:13.877|DEBU|SCT|secrets.FindSecretsByFilePathMap: SCRT start [INFO] 2023-09-06T08:16:16.318|INFO|SCT|cvetools.(*CveTools).startScan: Load Database - db=debian full=68095 namespace=debian:10 short=68095 [INFO] 2023-09-06T08:16:16.337|INFO|SCT|cvetools.(*CveTools).startScan: Packages in database to be examed - count=1816 [INFO] 2023-09-06T08:16:16.795|INFO|SCT|cvetools.(*CveTools).ScanImage: Done cve .... [INFO] 2023-09-06T08:16:18.538Z Scanned 1 files so far [INFO] 2023-09-06T08:16:19.194|DEBU|SCT|secrets.FindSecretsByFilePathMap: SCRT done - duration=5.317114119s perm_cnt=18 scan_cnt=2720 secret_cnt=0 [INFO] 2023-09-06T08:16:19.194|INFO|SCT|cvetools.(*CveTools).ScanImage.func1: Done secrets .... [INFO] 2023-09-06T08:16:19.194|INFO|SCT|cvetools.(*CveTools).ScanImage: scan image done - id=93626aff8c002f6bf40ffb70a20591bb9dad8fad1581970da84421844652009e secrets=0 vuls=150 [INFO] 2023-09-06T08:16:19.195|INFO|SCT|main.main: Exiting ... - imageWorkingPath=/tmp/images/8c023b63-4e7e-4414-9929-e9cf5d723bde used=12.04962479 [INFO] 2023-09-06T08:16:19.218|DEBU|SCN|main.(*Tasker).getResultFile: Completed [INFO] 2023-09-06T08:16:19.615|DEBU|SCN|main.writeResultToFile: Write scan result to file - output=/var/neuvector/scan_result.json registry=https://registry.hub.docker.com repo=eclipsecbi/jiro-agent-basic tag=latest [INFO] Image: https://registry.hub.docker.comeclipsecbi/jiro-agent-basic:latest [INFO] Base OS: debian:10 [INFO] Created at: 2023-08-23T20:50:53Z [INFO] [INFO] Vulnerabilities: 150, HIGH: 71, MEDIUM: 68, LOW: 11, UNKNOWN: 0 [INFO] ┌──────────────────────────┬────────────────┬──────────┬────────────────────────┬────────────────────┬────────────┐ [INFO] │ PACKAGE │ VULNERABILITY │ SEVERITY │ VERSION │ FIXED VERSION │ PUBLISHED │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ coreutils │ CVE-2016-2781 │ Medium │ 8.30-3 │ │ 2017-02-07 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ curl │ CVE-2023-27534 │ High │ 7.64.0-4+deb10u6 │ │ 2023-03-30 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-28322 │ Low │ │ │ 2023-05-26 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-28321 │ Medium │ │ │ 2023-05-26 │ [INFO] ├──────────────────────────┼────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ curl/libcurl3-gnutls │ CVE-2023-27534 │ High │ │ │ 2023-03-30 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-28322 │ Low │ │ │ 2023-05-26 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-28321 │ Medium │ │ │ 2023-05-26 │ [INFO] ├──────────────────────────┼────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ curl/libcurl4 │ CVE-2023-27534 │ High │ │ │ 2023-03-30 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-28322 │ Low │ │ │ 2023-05-26 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-28321 │ Medium │ │ │ 2023-05-26 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ db5.3/libdb5.3 │ CVE-2019-8457 │ High │ 5.3.28+dfsg1-0.5 │ │ 2019-05-30 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ e2fsprogs │ CVE-2022-1304 │ │ 1.44.5-1+deb10u3 │ │ 2022-04-14 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ e2fsprogs/libcom-err2 │ CVE-2022-1304 │ │ │ │ 2022-04-14 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ e2fsprogs/libext2fs2 │ CVE-2022-1304 │ │ │ │ 2022-04-14 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ e2fsprogs/libss2 │ CVE-2022-1304 │ │ │ │ 2022-04-14 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ elfutils/libelf1 │ CVE-2020-21047 │ Medium │ 0.176-1.1 │ │ 2023-08-22 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ gcc-8/gcc-8-base │ CVE-2018-12886 │ High │ 8.3.0-6 │ │ 2019-05-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-15847 │ │ │ │ 2019-09-02 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gcc-8/libgcc1 │ CVE-2018-12886 │ │ │ │ 2019-05-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-15847 │ │ │ │ 2019-09-02 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gcc-8/libstdc++6 │ CVE-2018-12886 │ │ │ │ 2019-05-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-15847 │ │ │ │ 2019-09-02 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ git │ CVE-2023-25652 │ │ 1:2.20.1-2+deb10u8 │ │ 2023-04-25 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-29007 │ │ │ │ 2023-04-25 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-25815 │ Low │ │ │ 2023-04-25 │ [INFO] ├──────────────────────────┼────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ git/git-man │ CVE-2023-25652 │ High │ │ │ 2023-04-25 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-29007 │ │ │ │ 2023-04-25 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-25815 │ Low │ │ │ 2023-04-25 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ glibc/libc-bin │ CVE-2020-1751 │ High │ 2.28-10+deb10u2 │ │ 2020-04-17 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ glibc/libc-l10n │ CVE-2020-1751 │ │ │ │ 2020-04-17 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ glibc/libc6 │ CVE-2020-1751 │ │ │ │ 2020-04-17 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ glibc/locales │ CVE-2020-1751 │ │ │ │ 2020-04-17 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ gnupg2/dirmngr │ CVE-2019-14855 │ │ 2.2.12-1+deb10u2 │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gnupg2/gnupg │ CVE-2019-14855 │ │ │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gnupg2/gnupg-l10n │ CVE-2019-14855 │ │ │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gnupg2/gnupg-utils │ CVE-2019-14855 │ │ │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gnupg2/gpg │ CVE-2019-14855 │ │ │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gnupg2/gpg-agent │ CVE-2019-14855 │ │ │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gnupg2/gpg-wks-client │ CVE-2019-14855 │ │ │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gnupg2/gpg-wks-server │ CVE-2019-14855 │ │ │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gnupg2/gpgconf │ CVE-2019-14855 │ │ │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gnupg2/gpgsm │ CVE-2019-14855 │ │ │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ gnupg2/gpgv │ CVE-2019-14855 │ │ │ │ 2020-03-20 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ iproute2 │ CVE-2019-20795 │ Medium │ 4.20.0-2+deb10u1 │ │ 2020-05-09 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ krb5/libgssapi-krb5-2 │ CVE-2023-36054 │ │ 1.17-3+deb10u5 │ │ 2023-08-07 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ krb5/libk5crypto3 │ CVE-2023-36054 │ │ │ │ 2023-08-07 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ krb5/libkrb5-3 │ CVE-2023-36054 │ │ │ │ 2023-08-07 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ krb5/libkrb5support0 │ CVE-2023-36054 │ │ │ │ 2023-08-07 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ libgcrypt20 │ CVE-2021-33560 │ High │ 1.8.4-5+deb10u1 │ │ 2021-06-08 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-13627 │ Medium │ │ │ 2019-09-25 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ libidn2/libidn2-0 │ CVE-2019-12290 │ High │ 2.0.5-1+deb10u1 │ │ 2019-10-22 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ libonig/libonig5 │ CVE-2019-13224 │ │ 6.9.1-1 │ │ 2019-07-10 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-16163 │ │ │ │ 2019-09-09 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-19012 │ │ │ │ 2019-11-17 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-19203 │ │ │ │ 2019-11-21 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-19204 │ │ │ │ 2019-11-21 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-19246 │ │ │ │ 2019-11-25 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-13225 │ Medium │ │ │ 2019-07-10 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ libsepol/libsepol1 │ CVE-2021-36084 │ Low │ 2.8-1 │ │ 2021-07-01 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2021-36085 │ │ │ │ 2021-07-01 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2021-36086 │ │ │ │ 2021-07-01 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2021-36087 │ │ │ │ 2021-07-01 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ libssh2/libssh2-1 │ CVE-2019-13115 │ High │ 1.8.0-2.1 │ │ 2019-07-16 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-17498 │ │ │ │ 2019-10-21 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-22218 │ │ │ │ 2023-08-22 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ lz4/liblz4-1 │ CVE-2019-17543 │ │ 1.8.3-1+deb10u1 │ │ 2019-10-14 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ ncurses/libncursesw6 │ CVE-2023-29491 │ │ 6.1+20181013-2+deb10u3 │ │ 2023-04-14 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19185 │ Medium │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19186 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19187 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19188 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19189 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19190 │ │ │ │ 2023-08-22 │ [INFO] ├──────────────────────────┼────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ ncurses/libtinfo6 │ CVE-2023-29491 │ High │ │ │ 2023-04-14 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19185 │ Medium │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19186 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19187 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19188 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19189 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19190 │ │ │ │ 2023-08-22 │ [INFO] ├──────────────────────────┼────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ ncurses/ncurses-base │ CVE-2023-29491 │ High │ │ │ 2023-04-14 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19185 │ Medium │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19186 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19187 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19188 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19189 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19190 │ │ │ │ 2023-08-22 │ [INFO] ├──────────────────────────┼────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ ncurses/ncurses-bin │ CVE-2023-29491 │ High │ │ │ 2023-04-14 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19185 │ Medium │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19186 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19187 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19188 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19189 │ │ │ │ 2023-08-22 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-19190 │ │ │ │ 2023-08-22 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ nghttp2/libnghttp2-14 │ CVE-2020-11080 │ High │ 1.36.0-2+deb10u1 │ │ 2020-06-03 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ openldap/libldap-2.4-2 │ CVE-2023-2953 │ │ 2.4.47+dfsg-3+deb10u7 │ │ 2023-05-30 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ openldap/libldap-common │ CVE-2023-2953 │ │ │ │ 2023-05-30 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ openssh/openssh-client │ CVE-2021-41617 │ │ 1:7.9p1-10+deb10u2 │ │ 2021-09-26 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-38408 │ │ │ 1:7.9p1-10+deb10u3 │ 2023-07-20 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ openssl │ CVE-2023-0464 │ │ 1.1.1n-0+deb10u4 │ 1.1.1n-0+deb10u5 │ 2023-03-22 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-0465 │ Medium │ │ 1.1.1n-0+deb10u5 │ 2023-03-28 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-0466 │ │ │ 1.1.1n-0+deb10u5 │ 2023-03-28 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-2650 │ │ │ 1.1.1n-0+deb10u5 │ 2023-05-30 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-3446 │ │ │ 1.1.1n-0+deb10u6 │ 2023-07-19 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-3817 │ │ │ 1.1.1n-0+deb10u6 │ 2023-07-31 │ [INFO] ├──────────────────────────┼────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ openssl/libssl1.1 │ CVE-2023-0464 │ High │ │ 1.1.1n-0+deb10u5 │ 2023-03-22 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-0465 │ Medium │ │ 1.1.1n-0+deb10u5 │ 2023-03-28 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-0466 │ │ │ 1.1.1n-0+deb10u5 │ 2023-03-28 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-2650 │ │ │ 1.1.1n-0+deb10u5 │ 2023-05-30 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-3446 │ │ │ 1.1.1n-0+deb10u6 │ 2023-07-19 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-3817 │ │ │ 1.1.1n-0+deb10u6 │ 2023-07-31 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ pcre3/libpcre3 │ CVE-2020-14155 │ │ 2:8.39-12 │ │ 2020-06-15 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ perl │ CVE-2020-16156 │ High │ 5.28.1-6+deb10u1 │ │ 2021-12-13 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-31484 │ │ │ │ 2023-04-29 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ perl/libperl5.28 │ CVE-2020-16156 │ │ │ │ 2021-12-13 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-31484 │ │ │ │ 2023-04-29 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ perl/perl-base │ CVE-2020-16156 │ │ │ │ 2021-12-13 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-31484 │ │ │ │ 2023-04-29 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ perl/perl-modules-5.28 │ CVE-2020-16156 │ │ │ │ 2021-12-13 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2023-31484 │ │ │ │ 2023-04-29 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ rsync │ CVE-2022-29154 │ │ 3.1.3-6 │ │ 2022-08-02 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ shadow/login │ CVE-2023-29383 │ Low │ 1:4.5-1.1 │ │ 2023-04-14 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2018-7169 │ Medium │ │ │ 2018-02-15 │ [INFO] ├──────────────────────────┼────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ shadow/passwd │ CVE-2023-29383 │ Low │ │ │ 2023-04-14 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2018-7169 │ Medium │ │ │ 2018-02-15 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ sqlite3/libsqlite3-0 │ CVE-2019-19603 │ High │ 3.27.2-3+deb10u2 │ │ 2019-12-09 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2021-31239 │ │ │ │ 2023-05-09 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-19645 │ Medium │ │ │ 2019-12-09 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-19924 │ │ │ │ 2019-12-24 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2020-13631 │ │ │ │ 2020-05-27 │ [INFO] ├──────────────────────────┼────────────────┼──────────┼────────────────────────┼────────────────────┼────────────┤ [INFO] │ systemd/libsystemd0 │ CVE-2019-3843 │ High │ 241-7~deb10u9 │ │ 2019-04-26 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-3844 │ │ │ │ 2019-04-26 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2021-3997 │ Medium │ │ │ 2022-08-23 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2022-3821 │ │ │ 241-7~deb10u10 │ 2022-11-08 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2022-4415 │ │ │ │ 2023-01-11 │ [INFO] ├──────────────────────────┼────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ systemd/libudev1 │ CVE-2019-3843 │ High │ │ │ 2019-04-26 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2019-3844 │ │ │ │ 2019-04-26 │ [INFO] │ ├────────────────┼──────────┤ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2021-3997 │ Medium │ │ │ 2022-08-23 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2022-3821 │ │ │ 241-7~deb10u10 │ 2022-11-08 │ [INFO] │ ├────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ │ CVE-2022-4415 │ │ │ │ 2023-01-11 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ util-linux │ CVE-2021-37600 │ │ 2.33.1-0.1 │ │ 2021-07-30 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ util-linux/bsdutils │ CVE-2021-37600 │ │ │ │ 2021-07-30 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ util-linux/fdisk │ CVE-2021-37600 │ │ │ │ 2021-07-30 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ util-linux/libblkid1 │ CVE-2021-37600 │ │ │ │ 2021-07-30 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ util-linux/libfdisk1 │ CVE-2021-37600 │ │ │ │ 2021-07-30 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ util-linux/libmount1 │ CVE-2021-37600 │ │ │ │ 2021-07-30 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ util-linux/libsmartcols1 │ CVE-2021-37600 │ │ │ │ 2021-07-30 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ util-linux/libuuid1 │ CVE-2021-37600 │ │ │ │ 2021-07-30 │ [INFO] ├──────────────────────────┼────────────────┤ │ ├────────────────────┼────────────┤ [INFO] │ util-linux/mount │ CVE-2021-37600 │ │ │ │ 2021-07-30 │ [INFO] ├──────────────────────────┼────────────────┤ ├────────────────────────┼────────────────────┼────────────┤ [INFO] │ wget │ CVE-2021-31879 │ │ 1.20.1-1.1 │ │ 2021-04-29 │ [INFO] └──────────────────────────┴────────────────┴──────────┴────────────────────────┴────────────────────┴────────────┘ [INFO] 2023-09-06T08:16:19.62 |DEBU|SCN|main.(*Tasker).Close: [INFO] 2023-09-06T08:16:19.62 |DEBU|SCN|system.(*SystemTools).ShowToolProcesses: TOOLP: - info=25[0]: Run, 8c023b63-4e7e-4414-9929-e9cf5d723bde pgid=25 [INFO] 2023-09-06T04:16:23.768-04:00 Evaluating application dockertest for stage build. [INFO] Could not discover git repository url via automation [INFO] Waiting for policy evaluation to complete... [INFO] 2023-09-06T08:16:22.633Z Scanned 1 total files [INFO] 2023-09-06T08:16:22.636Z Finished scanning application dockertest. [INFO] Assigned scan ID ff9b129fe5b14a45a3b389685769ac45 [INFO] Policy evaluation completed in 12 seconds. [INFO] 2023-09-06T04:16:36.179-04:00 Finished evaluating application dockertest for stage build. The detailed report can be viewed online at https://6xnbhs2lig-nxiq.sonatype-se.com/ui/links/application/dockertest/report/ff9b129fe5b14a45a3b389685769ac45 Summary of policy violations: 71 critical, 68 severe, 11 moderate [Pipeline] } [Pipeline] // withEnv [Pipeline] } [Pipeline] // stage [Pipeline] } [Pipeline] // withEnv [Pipeline] } [Pipeline] // node [Pipeline] } [Pipeline] // podTemplate [Pipeline] End of Pipeline Finished: SUCCESS