image registry.redhat.io/container-native-virtualization/kubevirt-storage-checkup-rhel9@sha256:25cd823be1c068e52b67e0b58138150cf9cf9f6a5269dc4902b6b3ea768831e3 758c0dd29adde97ec0bfa2028bc1f0b6937195f7bd156610f9498efa24dc67a0 scanning registry-proxy.engineering.redhat.com/rh-osbs/container-native-virtualization-kubevirt-storage-checkup-rhel9@sha256:25cd823be1c068e52b67e0b58138150cf9cf9f6a5269dc4902b6b3ea768831e3 2024-04-29T15:35:43.554+0200 INFO Vulnerability scanning is enabled 2024-04-29T15:35:45.293+0200 INFO Number of language-specific files: 1 2024-04-29T15:35:45.293+0200 INFO Detecting gobinary vulnerabilities... checkups/kubevirt-storage-checkup (gobinary) Total: 2 (UNKNOWN: 0, LOW: 0, MEDIUM: 2, HIGH: 0, CRITICAL: 0) ┌────────────────────────────┬────────────────┬──────────┬────────┬───────────────────┬───────────────┬──────────────────────────────────────────────────────────────┐ │ Library │ Vulnerability │ Severity │ Status │ Installed Version │ Fixed Version │ Title │ ├────────────────────────────┼────────────────┼──────────┼────────┼───────────────────┼───────────────┼──────────────────────────────────────────────────────────────┤ │ golang.org/x/net │ CVE-2023-45288 │ MEDIUM │ fixed │ v0.19.0 │ 0.23.0 │ golang: net/http, x/net/http2: unlimited number of │ │ │ │ │ │ │ │ CONTINUATION frames causes DoS │ │ │ │ │ │ │ │ https://avd.aquasec.com/nvd/cve-2023-45288 │ ├────────────────────────────┼────────────────┤ │ ├───────────────────┼───────────────┼──────────────────────────────────────────────────────────────┤ │ google.golang.org/protobuf │ CVE-2024-24786 │ │ │ v1.32.0 │ 1.33.0 │ golang-protobuf: encoding/protojson, internal/encoding/json: │ │ │ │ │ │ │ │ infinite loop in protojson.Unmarshal when unmarshaling │ │ │ │ │ │ │ │ certain forms of... │ │ │ │ │ │ │ │ https://avd.aquasec.com/nvd/cve-2024-24786 │ └────────────────────────────┴────────────────┴──────────┴────────┴───────────────────┴───────────────┴──────────────────────────────────────────────────────────────┘