Prisma Cloud Compute: CVE-2022-40897 im Image (Abbild) -Ergebnis

Prisma Cloud Compute: CVE-2022-40897 im Image (Abbild) -Ergebnis

2686
Created On 07/31/24 00:50 AM - Last Modified 04/30/25 20:26 PM


Objective


Das Ziel dieses Artikels besteht darin, zu erklären, warum beim Prisma-Scan unterschiedliche Versionen des Pakets python3-setuptools-wheel in einem OpenShift- Image (Abbild) erkannt wurden.

Environment


  • Selbstgehostete Prisma Cloud Compute-Konsole
  • Prisma Cloud Compute SAAS-Konsole

Procedure


Investigation from engineering team revealed that the image content was updated using yum update or similar commands, resulting in a mismatch between the image and the container based on it.

It was identified that the image downloaded had a older version, but somewhere during the image execution that package was updated which can be identified using the following command 
rpm -qa --qf '%{INSTALLTIME} (%{INSTALLTIME:date}): %{NAME}-%{VERSION}-%{RELEASE}.%{ARCH}\n' | sort -n | grep python3-setuptools.
It is advised from our engineering team to use an updated image where the package is already updated.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000HDlVCAW&lang=de&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language