Uploaded image for project: 'Red Hat Advanced Cluster Security'
  1. Red Hat Advanced Cluster Security
  2. ROX-27820

Normalized Version is missing in rpm packages

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Can't Do
    • Icon: Undefined Undefined
    • None
    • None
    • Scanner & Vulnerability Feeds
    • None
    • Quality / Stability / Reliability
    • False
    • Hide

      None

      Show
      None
    • False
    • Rox Sprint 4.7G - Global
    • 0

      For all rpm packages returned from Node Indexer (in Compliance), the normalized version is [0,0,0,0,...].

      Based on gathered experience with v4 matcher, this may result in a query to the DB that could return all vulnerabilities for a given package - i.e, as if the package would be in version 0.0.z.

      This ticket is to:

      • Confirm (or deny) that the normalized version is required for the RHCOS node scan
      • Fill the normalized version in node indexer (compliance)

              prygiels@redhat.com Piotr Rygielski
              prygiels@redhat.com Piotr Rygielski
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: