Bug 1368896
Summary: | atomic scan can't find CVEs for all of container images | |||
---|---|---|---|---|
Product: | Red Hat Enterprise Linux 7 | Reporter: | Alex Jia <ajia> | |
Component: | atomic | Assignee: | Lokesh Mandvekar <lsm5> | |
Status: | CLOSED ERRATA | QA Contact: | atomic-bugs <atomic-bugs> | |
Severity: | medium | Docs Contact: | ||
Priority: | high | |||
Version: | 7.4 | CC: | bbaude, dwalsh, mhaicman, mpreisle, openscap-maint | |
Target Milestone: | rc | Keywords: | Extras | |
Target Release: | --- | |||
Hardware: | x86_64 | |||
OS: | Linux | |||
Whiteboard: | ||||
Fixed In Version: | Doc Type: | If docs needed, set a value | ||
Doc Text: | Story Points: | --- | ||
Clone Of: | ||||
: | 1386358 (view as bug list) | Environment: | ||
Last Closed: | 2016-12-06 17:41:47 UTC | Type: | Bug | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 1386358 |
Comment 2
Martin Preisler
2016-09-02 19:23:43 UTC
Should this bug be moved to openscap? Yes, it is a racey type thing. Fixed upstream -> https://github.com/projectatomic/atomic/pull/692 This should be fixed in atomic-1.13.1-2.el7 The openscap folks cloned this for tracking of the race condition which will require a longer examination. Reassigning this bz back to atomic. (In reply to Brent Baude from comment #6) > This should be fixed in atomic-1.13.1-2.el7 I can find expected CVEs bugs in atomic-1.13.1-2.el7 and latest atomic-1.13.6-1.el7, so move the bug to VERIFIED status. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHBA-2016-2857.html |