clair-scanner icon indicating copy to clipboard operation
clair-scanner copied to clipboard
verified publisher icon arminc

False negative by clair

Open kaurbhupinder opened this issue 6 years ago • 0 comments

In image having Ubuntu 18.04 OS linux package is present but Clair scanner is not reporting CVE-2017-0537 and other cve ids that are marked "deferred" For example CVE-2017-0537 on below link but not reported by Clair-Scanner https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-0537.html

Are these false negatives?

kaurbhupinder avatar Oct 03 '19 00:10 kaurbhupinder