USER PROBLEM

Virtual machine vulnerability management feature produces scans for VMs with bpftool installed that claim it has 2928 vulnerabilities. This looks incorrect.

$ curl -u admin:admin -k https://localhost:8443/v2/virtualmachines/8c05f89c-77ff-5bd7-b604-b5d0a80d1b6f > vm-many-packages.json

$ jq '.scan.components[] | select(.name == "bpftool") | .vulns | length' vm-many-packages.json
2928

The JSON file vm-many-packages.json is attached to this ticket.

Slack thread: https://redhat-internal.slack.com/archives/C07ARHMGLKA/p1767310036057349

CONDITIONS
A VM with "bpftool" installed is running in a secured cluster, and the ROX_VIRTUAL_MACHINES feature flag is enabled in Stackrox.

ROOT CAUSE
^{What is the root cause of the bug?}

• pending

FIX
^{How was the bug fixed (this is more important if a workaround was implemented rather than an actual fix)?}

• pending