Prisma Cloud Compute: CVE-2022-40897 in image scan result
2132
Created On 07/31/24 00:50 AM - Last Modified 04/30/25 20:26 PM
Objective
The objective of this article is to explain why Prisma scanning detected different versions of the python3-setuptools-wheel package in an OpenShift image.
Environment
- Prisma Cloud Compute Self-Hosted Console
- Prisma Cloud Compute SAAS Console
Procedure
The engineering team's investigation revealed that the image content was updated using yum update or similar commands, resulting in a mismatch between the image and the container based on it.
It was identified that the image downloaded had an older version, but somewhere during the image execution, that package was updated, which can be identified using the following command
rpm -qa --qf '%{INSTALLTIME} (%{INSTALLTIME:date}): %{NAME}-%{VERSION}-%{RELEASE}.%{ARCH}\n' | sort -n | grep python3-setuptools.
It is advised from our engineering team to use an updated image where the package is already updated.