gseidlerhpe comments

Results 5 comments of


                                            gseidlerhpe

CVE scan lists high vulnerability against latest image k8s.gcr.io/nfd/node-feature-discovery:v0.11.1

@marquiz unfortunately the v0.11.2 image still has critical and high vulnerabilities (mostly Debian and Go). The basic docker scan (Snyk 1.827.0) lists 1 critical and 1 high: ✗ High severity...

error code CUDA driver version is insufficient for CUDA runtime version in v22.9.0

Same issue with gpu-operator v23.3.2

Many critical/high CVEs in v0.6.1 image do to outdated golang and related packages

A JFrog vulnerability scan of the latest image k8s.gcr.io/metrics-server/metrics-server:v0.6.2 lists additional high vulnerabilities all related to golang / go packages plus one related to the already mentioned Prometheus UI CVE:...

Critical and high CVEs found in image ghcr.io/mellanox/k8s-rdma-shared-dev-plugin:v1.5.2

> [@gseidlerhpe](https://github.com/gseidlerhpe) could you please clarify what CVE scanner did you use? We are using JFrog Xray, version 3.111.15, with the default CVE policy and rules.

Critical and high CVEs found in image ghcr.io/mellanox/k8s-rdma-shared-dev-plugin:v1.5.2

> I dont think we use dynamic linking so these libs are not used > > Perhaps we need to switch to distroless to reduce e the churn Is there...