Skip to content

Commit

Permalink
feat(ubuntu): treat needs-triage as vulnerable until determination m…
Browse files Browse the repository at this point in the history 
…ade (#597)

* feat(ubuntu): treat needs-triage as vulnerable until determination made

Signed-off-by: Weston Steimel <[email protected]>

* chore: bump match labels

Signed-off-by: Weston Steimel <[email protected]>

* test: quality gate should execute against more ubuntu images

Signed-off-by: Weston Steimel <[email protected]>

---------

Signed-off-by: Weston Steimel <[email protected]>
  • Loading branch information
@westonsteimel
westonsteimel authored Jun 11, 2024
1 parent 2b91810 commit db6147b
Show file tree
Hide file tree
Showing 24 changed files with 27 additions and 23 deletions.
2 changes: 1 addition & 1 deletion .gitmodules
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
[submodule "tests/quality/vulnerability-match-labels"]
path = tests/quality/vulnerability-match-labels
url = https://github.com/anchore/vulnerability-match-labels.git
branch = main
branch = ubuntu-label-updates
2 changes: 1 addition & 1 deletion src/vunnel/providers/ubuntu/__init__.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ class Config:

class Provider(provider.Provider):
# this is the version for the behavior of the provider (processing) not an indication of the data shape.
__version__ = 2
__version__ = 3

__schema__ = schema.OSSchema()
__distribution_version__ = int(__schema__.major_version)
Expand Down
2 changes: 1 addition & 1 deletion src/vunnel/providers/ubuntu/parser.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,7 +38,7 @@
# Maps the state name to whether it indicates a package is vulnerable
patch_states = {
"DNE": False, # Does Not Exist, the package is does not exist in a particular ubuntu release
"needs-triage": False, # Not yet determined if CVE affects package, ignore in anchore until determination made
"needs-triage": True, # Not yet determined if CVE affects package, consider all versions vulnerable until determination is made
"ignored": False, # CVE does not affect the package or no updates (e.g. end-of-life) (NOTE: should still report?)
"not-affected": False, # The package is related to the issue, but not affected by it.
"needed": True, # Package is vuln and needs a fix. No version yet.
Expand Down
4 changes: 4 additions & 0 deletions tests/quality/config.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -227,6 +227,10 @@ tests:
use_cache: true
images:
- docker.io/ubuntu:16.10@sha256:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a
- docker.io/ubuntu:19.04@sha256:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58
- docker.io/ubuntu:22.04@sha256:aa6c2c047467afc828e77e306041b7fa4a65734fe3449a54aa9c280822b0d87d
- docker.io/ubuntu:22.10@sha256:80fb4ea0c0a384a3072a6be1879c342bb636b0d105209535ba893ba75ab38ede
- docker.io/ubuntu:23.04@sha256:09f035f46361d193ded647342903b413d57d05cc06acff8285f9dda9f2d269d5
expected_namespaces:
- ubuntu:distro:ubuntu:12.04
- ubuntu:distro:ubuntu:12.10
Expand Down
2 changes: 1 addition & 1 deletion tests/quality/vulnerability-match-labels
Submodule vulnerability-match-labels updated 99 files
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/002eab5e-d497-4f55-a370-e42530624705.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/18650828-b5a5-465b-b1ff-35717092fc3b.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/24e73d03-0315-469f-8b3f-0bcdc82f43ac.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/29e06ac6-e04b-4d4b-9f49-3379b61aa7bd.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/2d089a98-499d-4539-b484-417ab41232aa.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/4003d7db-647c-4384-bb4f-16f8ef4a2769.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/685d7750-6f6b-4a06-a0ff-b4fa1f8aeb5f.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/7321a758-7edb-49a5-95ea-8312b88e28bd.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/7e204530-972b-41ac-9fe8-551e4662c5da.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/98a8e87e-ce40-402f-b47e-0753ced90b81.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/9eabf9aa-4c39-4d1e-b077-70979957132a.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/a352193b-1af7-4e40-ac25-30513a98f628.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/ab732f01-0d71-468b-9686-827b071c95f8.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/b8f85203-d668-4ceb-94a8-2f4b5b2836f8.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/db92cad5-5179-4334-bef4-70d3bf12c618.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/de0002bf-4bcf-49e8-aa54-c1948b0ba958.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/e1467a77-0016-4001-9da6-f1692dccd2d2.json
+1 −0 ...:02521a2d079595241c6793b2044f02eecf294034f31d6e235ac4b2b54ffc41f3/f7451faf-463f-4750-bf1e-57e34232b67b.json
+1 −0 ...:09f035f46361d193ded647342903b413d57d05cc06acff8285f9dda9f2d269d5/37ae4ae9-e3ae-4ba7-aea4-23c515190732.json
+1 −0 ...:09f035f46361d193ded647342903b413d57d05cc06acff8285f9dda9f2d269d5/ca2e2b3c-408a-4790-aed1-6d5af7065130.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/0a0b0254-701c-4c01-abd3-d22840bfc4b4.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/3b001a8d-50ba-414e-9f13-083d5dd4c803.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/438bf9a4-6e17-4795-b82d-45fb3e70fe20.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/4a473cff-e399-4f47-bf8b-1b39027535c9.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/4ddcb0ca-0330-414a-b2a4-7712ebbfe87b.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/63be6cc4-ebad-4efd-bd05-a7ffc3446953.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/654c9705-b0bc-4bb7-b305-ff75e54728ae.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/6c7c0b0a-78ae-427d-be64-bb0dfc270a17.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/6eead27e-f217-4d6f-89b2-0e095de17c63.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/72a4275a-9d5f-4898-a4c5-5f6247d57640.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/73f3f859-11b5-479f-9351-c41ee804cfe5.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/93d66375-9d8f-4650-b109-4c424b6db562.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/943f4d05-0a33-4c0a-b726-9886da5b7bec.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/a7afcd7f-407d-4a1b-98a5-bb8d126090fa.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/c45f7e21-7838-4b3a-b53a-105d964b3d40.json
+0 −1 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/c68390e4-f6bc-44b5-bb73-0c9fd186a2f9.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/c8b2e5e9-650e-49e7-bd86-8ae855e8be83.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/cd041b6d-a483-433a-993a-fb969bae5b68.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/cfc17809-99b3-4009-affb-dfa175a31493.json
+0 −1 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/dc0701c4-5749-43b3-b607-6b411377e875.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/dc9a59be-cb10-4b96-bae1-18968f275831.json
+0 −1 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/e5b3d87e-3e45-4406-b55b-54925d181ac1.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/ed036b33-a6dc-4cfc-82c1-f6ad5991042a.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/ef5f78f6-84db-413b-8b6b-416e15ccd8f4.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/f655060c-9890-4562-823b-7eb2ca9ee415.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/f8ae0aca-cab8-4131-a147-550a2918f626.json
+1 −0 ...:18305429afa14ea462f810146ba44d4363ae76e4c8dfc38288cf73aa07485005/fcf54c2a-ceec-41dc-8f03-2854e0b237eb.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/09b812a2-847b-40b8-89f5-7907a79097a2.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/2f3c4988-0188-4fd3-b5d6-ea292f21a908.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/64811597-434f-4d18-ac7c-f54493ab3817.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/80419455-8322-4eba-9a07-fec752b5eba3.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/8ab64fb7-046d-44b8-b2d2-87a22c8e91b3.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/9035fe7e-f9e4-4fcb-88ac-fe2516a5023e.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/9357f982-3be9-470f-be65-c0899d20c28c.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/94baa7cc-6127-463e-a604-617d06e307a2.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/977ec314-c915-428f-a2d7-e54cd4426198.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/9efe721d-bb9b-4449-8c6b-9f2fef31eb66.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/9fb3dfce-d654-4895-84be-48117fccae70.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/a50c0327-1ea0-4915-b7f6-83bf80dc748e.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/ab5ca65e-509f-4c7c-b74b-c6b489b873aa.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/c26c8578-aef0-4c28-831f-15722f5bbf7d.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/d39e4ae0-7a3f-4380-bd21-0e5bc171b2d3.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/d3d3ec35-da12-4084-9113-d408b1f11b70.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/ebcfcbdf-a64b-46c6-81ee-cddc575e97f1.json
+1 −0 ...:3db17bfc30b41cc18552578f4a66d7010050eb9fdc42bf6c3d82bb0dcdf88d58/f60ea49c-b6cb-4b4d-85a4-6e08fb3bebce.json
+1 −0 ...:80fb4ea0c0a384a3072a6be1879c342bb636b0d105209535ba893ba75ab38ede/720467c5-fdbd-4fef-b355-4fbe1cc048f6.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/03096ab9-b6ac-4e45-a0fd-bf1c1a63ce77.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/072a1ae9-d0e2-46a4-9860-c9fd2226733e.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/0c0a3c8e-97a0-486a-b828-4821b437ceeb.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/1a062212-6132-4bce-ab9b-7ddd547fd14f.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/1ca2ad76-1ad1-49ab-b101-27848c9a9d6e.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/229b82d9-c944-4fb9-ab57-bef4adb0c18b.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/26d32875-c82d-4f29-be07-cbebbff674a9.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/3159d2ec-f4d4-499a-9a42-35a00d85c5d9.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/33121484-ceeb-4cf2-ba72-7a752031a004.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/3b722c51-bacc-4699-bd69-beaefec62a0e.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/3e032f4a-457a-4ae4-9750-e8be6ba570f7.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/42518c99-5020-4c02-9f46-02c61d23f319.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/461cb094-12e7-4d05-a4ff-f0b2ab187035.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/4f6ac22c-1e85-47df-88f7-d1ee4cee5a20.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/57bb01dd-aeab-46db-be53-772be3c5729c.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/61234c95-c37b-4dd2-b735-4d30cd7b2c4f.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/620a64f4-7783-4fdc-8cd3-1cc085cf63c9.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/6d1db107-1362-437d-881a-2bba008cf57a.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/7723dd06-ed93-4dee-a11f-d956d7d70692.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/8b638e4b-da08-4332-a6cc-39c2de99ef11.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/8c7b5b42-c374-43d3-9b19-5a13c04e506d.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/92c326e0-4fd3-4e09-a98b-8ecd8d96f5c9.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/975fe621-3a75-48d0-8f65-72698e22ff4e.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/a4b63a4e-7b55-49a1-89f2-96de32aac391.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/a5ef7d0b-8a8f-48db-b2b6-fd3bc491e45e.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/c21b6fec-c503-49a6-aa93-75cac6b566c4.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/c8685f31-9d8e-4d0f-9d09-a4fb4b52cabc.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/d150a6ef-9d61-4d70-a491-fa9ed7292915.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/ec5c28ac-2642-44bf-8dcd-31831c4adfcc.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/ed755a18-cf99-439c-b8b8-3a445d072bde.json
+1 −0 ...:8dc9652808dc091400d7d5983949043a9f9c7132b15c14814275d25f94bca18a/f8d4ead6-d1fe-47ae-b017-a742be588ee1.json
+1 −0 ...:aa6c2c047467afc828e77e306041b7fa4a65734fe3449a54aa9c280822b0d87d/6044fe0a-1900-4429-a415-8502c0316f41.json
+1 −0 ...:aa6c2c047467afc828e77e306041b7fa4a65734fe3449a54aa9c280822b0d87d/7d57f64f-fb9e-4611-8b2a-032e7ba6da25.json
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:18.04/cve-2019-17185.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:18.04/cve-2019-17185","item":{"Vulnerability":{"Name":"CVE-2019-17185","NamespaceName":"ubuntu:18.04","Description":"","Severity":"Low","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2019-17185","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:18.04/cve-2019-17185","item":{"Vulnerability":{"Name":"CVE-2019-17185","NamespaceName":"ubuntu:18.04","Description":"","Severity":"Low","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2019-17185","FixedIn":[{"Name":"freeradius","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:18.04/cve-2022-20566.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:18.04/cve-2022-20566","item":{"Vulnerability":{"Name":"CVE-2022-20566","NamespaceName":"ubuntu:18.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-20566","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:18.04/cve-2022-20566","item":{"Vulnerability":{"Name":"CVE-2022-20566","NamespaceName":"ubuntu:18.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-20566","FixedIn":[{"Name":"linux","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-hwe-5.4","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-kvm","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-aws","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-aws-5.4","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-azure-4.15","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-azure-5.4","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-dell300x","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gcp-4.15","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gcp-5.4","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gke-4.15","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gke-5.4","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gkeop-5.4","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-ibm-5.4","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oracle","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oracle-5.4","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oem","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oem-osp1","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-raspi2","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-raspi-5.4","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-snapdragon","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:18.04/cve-2022-41859.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:18.04/cve-2022-41859","item":{"Vulnerability":{"Name":"CVE-2022-41859","NamespaceName":"ubuntu:18.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41859","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:18.04/cve-2022-41859","item":{"Vulnerability":{"Name":"CVE-2022-41859","NamespaceName":"ubuntu:18.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41859","FixedIn":[{"Name":"freeradius","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:18.04/cve-2022-41860.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:18.04/cve-2022-41860","item":{"Vulnerability":{"Name":"CVE-2022-41860","NamespaceName":"ubuntu:18.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41860","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:18.04/cve-2022-41860","item":{"Vulnerability":{"Name":"CVE-2022-41860","NamespaceName":"ubuntu:18.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41860","FixedIn":[{"Name":"freeradius","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:18.04/cve-2022-41861.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:18.04/cve-2022-41861","item":{"Vulnerability":{"Name":"CVE-2022-41861","NamespaceName":"ubuntu:18.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41861","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:18.04/cve-2022-41861","item":{"Vulnerability":{"Name":"CVE-2022-41861","NamespaceName":"ubuntu:18.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41861","FixedIn":[{"Name":"freeradius","NamespaceName":"ubuntu:18.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:20.04/cve-2022-20566.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:20.04/cve-2022-20566","item":{"Vulnerability":{"Name":"CVE-2022-20566","NamespaceName":"ubuntu:20.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-20566","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:20.04/cve-2022-20566","item":{"Vulnerability":{"Name":"CVE-2022-20566","NamespaceName":"ubuntu:20.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-20566","FixedIn":[{"Name":"linux","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-hwe-5.15","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-kvm","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-aws","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-aws-5.15","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-azure","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-azure-5.15","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-azure-fde","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-azure-fde-5.15","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-bluefield","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gcp","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gcp-5.15","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gke","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gke-5.15","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gkeop","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-ibm","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-intel-5.13","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-intel-iotg-5.15","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-lowlatency-hwe-5.15","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oracle","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oracle-5.13","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oracle-5.15","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oem-5.6","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oem-5.10","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oem-5.14","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-raspi","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:20.04/cve-2022-41859.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:20.04/cve-2022-41859","item":{"Vulnerability":{"Name":"CVE-2022-41859","NamespaceName":"ubuntu:20.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41859","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:20.04/cve-2022-41859","item":{"Vulnerability":{"Name":"CVE-2022-41859","NamespaceName":"ubuntu:20.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41859","FixedIn":[{"Name":"freeradius","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:20.04/cve-2022-41860.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:20.04/cve-2022-41860","item":{"Vulnerability":{"Name":"CVE-2022-41860","NamespaceName":"ubuntu:20.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41860","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:20.04/cve-2022-41860","item":{"Vulnerability":{"Name":"CVE-2022-41860","NamespaceName":"ubuntu:20.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41860","FixedIn":[{"Name":"freeradius","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:20.04/cve-2022-41861.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:20.04/cve-2022-41861","item":{"Vulnerability":{"Name":"CVE-2022-41861","NamespaceName":"ubuntu:20.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41861","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:20.04/cve-2022-41861","item":{"Vulnerability":{"Name":"CVE-2022-41861","NamespaceName":"ubuntu:20.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-41861","FixedIn":[{"Name":"freeradius","NamespaceName":"ubuntu:20.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:22.04/cve-2021-4204.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:22.04/cve-2021-4204","item":{"Vulnerability":{"Name":"CVE-2021-4204","NamespaceName":"ubuntu:22.04","Description":"","Severity":"High","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2021-4204","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:22.04/cve-2021-4204","item":{"Vulnerability":{"Name":"CVE-2021-4204","NamespaceName":"ubuntu:22.04","Description":"","Severity":"High","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2021-4204","FixedIn":[{"Name":"linux-gkeop","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-azure-fde","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oem-6.0","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
2 changes: 1 addition & 1 deletion tests/unit/providers/ubuntu/test-fixtures/snapshots/ubuntu:22.04/cve-2022-20566.json
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:22.04/cve-2022-20566","item":{"Vulnerability":{"Name":"CVE-2022-20566","NamespaceName":"ubuntu:22.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-20566","FixedIn":[]}}}
{"schema":"https://raw.githubusercontent.com/anchore/vunnel/main/schema/vulnerability/os/schema-1.0.0.json","identifier":"ubuntu:22.04/cve-2022-20566","item":{"Vulnerability":{"Name":"CVE-2022-20566","NamespaceName":"ubuntu:22.04","Description":"","Severity":"Medium","Metadata":{},"Link":"https://ubuntu.com/security/CVE-2022-20566","FixedIn":[{"Name":"linux","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-kvm","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-aws","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-azure","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-azure-fde","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gcp","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gke","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-gkeop","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-ibm","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-intel-iotg","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-lowlatency","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oracle","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oem-5.17","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-raspi","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-riscv","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}},{"Name":"linux-oem-6.0","NamespaceName":"ubuntu:22.04","VersionFormat":"dpkg","Version":"None","VendorAdvisory":{"NoAdvisory":false}}]}}}
Loading

0 comments on commit db6147b

Please sign in to comment.