Uploaded image for project: 'Openshift sandboxed containers'
  1. Openshift sandboxed containers
  2. KATA-3109

1.6.0 monitor container has many CVEs

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: High High
    • OSC 1.6.0
    • OSC 1.6.0
    • kata-monitor
    • None
    • False
    • None
    • False
    • Approved
    • Kata Sprint #254
    • 0
    • 0

      Description

      <What were you trying to do that didn't work?>

      Errata shows the score as a B with many CVEs from all severities

      Steps to reproduce

      <What actions did you take to hit the bug?>
      1.
      2.
      3.

      Expected result

      <What did you expect to happen?>

      A score

      Actual result

      <What actually happened?>

      B score

      Impact

      <How badly does this interfere with using the software?>

      We can ship as is, but we would need to fix higher severity CVEs soon

      Env

      <Where was the bug found, i.e. OCP build, operator build, kata-containers build, cluster infra, test case id>

      Additional helpful info

      <logs, screenshot, doc links, etc.>

      dockerfile in midstream is using a ubi image as a builder

      FROM registry.redhat.io/ubi9/ubi-minimal:latest AS builder

      Maybe we should be using a golang builder image like the rest of the images.

              rhgkurz Greg Kurz
              cmeadors@redhat.com Cameron Meadors
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: