Uploaded image for project: 'Red Hat Advanced Cluster Security'
  1. Red Hat Advanced Cluster Security
  2. ROX-32481

Virtual machine scan reports bpftool having 2928 vulnerabilities

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • None
    • ACS Virt Support
    • None
    • Quality / Stability / Reliability
    • False
    • Hide

      None

      Show
      None
    • False

      USER PROBLEM

      Virtual machine vulnerability management feature produces scans for VMs with bpftool installed that claim it has 2928 vulnerabilities. This looks incorrect.

      $ curl -u admin:admin -k https://localhost:8443/v2/virtualmachines/8c05f89c-77ff-5bd7-b604-b5d0a80d1b6f > vm-many-packages.json

$ jq '.scan.components[] | select(.name == "bpftool") | .vulns | length' vm-many-packages.json
2928

      The JSON file vm-many-packages.json is attached to this ticket.

      Slack thread: https://redhat-internal.slack.com/archives/C07ARHMGLKA/p1767310036057349

      CONDITIONS
      A VM with "bpftool" installed is running in a secured cluster, and the ROX_VIRTUAL_MACHINES feature flag is enabled in Stackrox.

      ROOT CAUSE
      What is the root cause of the bug?

      • pending

      FIX
      How was the bug fixed (this is more important if a workaround was implemented rather than an actual fix)?

      • pending

        1. vm-many-packages.json
          8.26 MB
          Guzman Alvarez

              Unassigned Unassigned
              rh-ee-gualvare Guzman Alvarez
              ACS Sensor & Ecosystem
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: