Merge pull request #303 from kubescape/feat-autoupdater #693
This check has been archived and is scheduled for deletion.
Learn more about checks retention
GitHub Actions / JUnit Test Report
failed
Oct 22, 2023 in 0s
1 tests run, 0 passed, 0 skipped, 1 failed.
Annotations
Check failure on line 1 in results_xml_format/vulnerability_scanning.xml
github-actions / JUnit Test Report
vulnerability_scanning
test_cve_result, timeout: 20 minutes, error: got duplicated cve {'designators': {'designatorType': 'Attributes', 'attributes': {'cluster': 'kind-systests-890bcdba-a5ef-4f4a-86bf-c0bb1a36fb30', 'containerName': 'mariadb', 'customerGUID': '6b18bea6-abbb-4c23-a796-49aac0fee35f', 'kind': 'deployment', 'name': 'mariadb', 'namespace': 'systest-ns-tmar', 'workloadHash': '13448601840321481188'}}, 'layerHash': 'generatedlayer', 'wlid': 'wlid://cluster-kind-systests-890bcdba-a5ef-4f4a-86bf-c0bb1a36fb30/namespace-systest-ns-tmar/deployment-mariadb', 'containersScanID': 'systest-ns-tmar-replicaset-mariadb-5d77964d5c-e563-8b3e', 'healthStatus': '', 'imageHash': 'docker.io/library/mariadb@sha256:821d0411208eaa88f9e1f0daccd1d534f88d19baf724eb9a2777cbedb10b6c66', 'imageTag': 'docker.io/library/mariadb@sha256:821d0411208eaa88f9e1f0daccd1d534f88d19baf724eb9a2777cbedb10b6c66', 'packageName': 'libheimntlm0-heimdal', 'packageVersion': '7.7.0+dfsg-1ubuntu1', 'link': 'https://nvd.nist.gov/vuln/detail/CVE-2022-42898', 'description': 'PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."', 'severity': 'Medium', 'name': 'CVE-2022-42898', 'fixedIn': [{'name': 'fixed', 'imageTag': 'docker.io/library/mariadb@sha256:821d0411208eaa88f9e1f0daccd1d534f88d19baf724eb9a2777cbedb10b6c66', 'version': '7.7.0+dfsg-1ubuntu1.3'}], 'severityScore': 300, 'neglected': 0, 'urgent': 0, 'categories': {'isRce': True}, 'layers': [{'layerHash': 'generatedlayer', 'parentLayerHash': ''}], 'layersNested': None, 'context': [{'attribute': 'workloadHash', 'value': '13448601840321481188', 'source': 'designators.attributes'}, {'attribute': 'customerGUID', 'value': '6b18bea6-abbb-4c23-a796-49aac0fee35f', 'source': 'designators.attributes'}, {'attribute': 'cluster', 'value': 'kind-systests-890bcdba-a5ef-4f4a-86bf-c0bb1a36fb30', 'source': 'designators.attributes'}, {'attribute': 'namespace', 'value': 'systest-ns-tmar', 'source': 'designators.attributes'}, {'attribute': 'kind', 'value': 'deployment', 'source': 'designators.attributes'}, {'attribute': 'name', 'value': 'mariadb', 'source': 'designators.attributes'}, {'attribute': 'containerName', 'value': 'mariadb', 'source': 'designators.attributes'}], 'links': ['https://nvd.nist.gov/vuln/detail/CVE-2022-42898', 'http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-42898'], 'timestamp': 1697979396, 'isLastScan': 1, 'isFixed': 1, 'relevantLabel': '', 'clusterShortName': 'kind-systests-890bcdba-a5ef-4f4a-86bf-c0bb1a36fb30', 'ignoreRulesSummary': None} in container mariadb.Raw output
test_cve_result, timeout: 20 minutes, error: got duplicated cve {'designators': {'designatorType': 'Attributes', 'attributes': {'cluster': 'kind-systests-890bcdba-a5ef-4f4a-86bf-c0bb1a36fb30', 'containerName': 'mariadb', 'customerGUID': '6b18bea6-abbb-4c23-a796-49aac0fee35f', 'kind': 'deployment', 'name': 'mariadb', 'namespace': 'systest-ns-tmar', 'workloadHash': '13448601840321481188'}}, 'layerHash': 'generatedlayer', 'wlid': 'wlid://cluster-kind-systests-890bcdba-a5ef-4f4a-86bf-c0bb1a36fb30/namespace-systest-ns-tmar/deployment-mariadb', 'containersScanID': 'systest-ns-tmar-replicaset-mariadb-5d77964d5c-e563-8b3e', 'healthStatus': '', 'imageHash': 'docker.io/library/mariadb@sha256:821d0411208eaa88f9e1f0daccd1d534f88d19baf724eb9a2777cbedb10b6c66', 'imageTag': 'docker.io/library/mariadb@sha256:821d0411208eaa88f9e1f0daccd1d534f88d19baf724eb9a2777cbedb10b6c66', 'packageName': 'libheimntlm0-heimdal', 'packageVersion': '7.7.0+dfsg-1ubuntu1', 'link': 'https://nvd.nist.gov/vuln/detail/CVE-2022-42898', 'description': 'PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."', 'severity': 'Medium', 'name': 'CVE-2022-42898', 'fixedIn': [{'name': 'fixed', 'imageTag': 'docker.io/library/mariadb@sha256:821d0411208eaa88f9e1f0daccd1d534f88d19baf724eb9a2777cbedb10b6c66', 'version': '7.7.0+dfsg-1ubuntu1.3'}], 'severityScore': 300, 'neglected': 0, 'urgent': 0, 'categories': {'isRce': True}, 'layers': [{'layerHash': 'generatedlayer', 'parentLayerHash': ''}], 'layersNested': None, 'context': [{'attribute': 'workloadHash', 'value': '13448601840321481188', 'source': 'designators.attributes'}, {'attribute': 'customerGUID', 'value': '6b18bea6-abbb-4c23-a796-49aac0fee35f', 'source': 'designators.attributes'}, {'attribute': 'cluster', 'value': 'kind-systests-890bcdba-a5ef-4f4a-86bf-c0bb1a36fb30', 'source': 'designators.attributes'}, {'attribute': 'namespace', 'value': 'systest-ns-tmar', 'source': 'designators.attributes'}, {'attribute': 'kind', 'value': 'deployment', 'source': 'designators.attributes'}, {'attribute': 'name', 'value': 'mariadb', 'source': 'designators.attributes'}, {'attribute': 'containerName', 'value': 'mariadb', 'source': 'designators.attributes'}], 'links': ['https://nvd.nist.gov/vuln/detail/CVE-2022-42898', 'http://people.ubuntu.com/~ubuntu-security/cve/CVE-2022-42898'], 'timestamp': 1697979396, 'isLastScan': 1, 'isFixed': 1, 'relevantLabel': '', 'clusterShortName': 'kind-systests-890bcdba-a5ef-4f4a-86bf-c0bb1a36fb30', 'ignoreRulesSummary': None} in container mariadb.
Loading