2 Risposte
- Più recenti
- Maggior numero di voti
- Maggior numero di commenti
1
We are on the Basic Support Plan, unfortunately. I spent a couple hours looking into this today, and still believe Inspector2 is misreporting. Here's an excerpt from the finding:
...
"vulnerabilityId": "CVE-2021-44731",
"vulnerablePackages": [
{
"arch": "ALL",
"epoch": 0,
"name": "snapd",
"packageManager": "OS",
"version": "2.54.3"
}
],
...
And from CVE-2021-44731:
Fixed in snapd versions 2.54.3+18.04, 2.54.3+20.04 and 2.54.3+21.10.1
I'd rather not suppress this finding. Does anyone have any other suggestions?
con risposta 2 anni fa
0
Please create a support case providing details for the AWS support team to investigate and provide guidance on this.
Thanks.
con risposta 2 anni fa
Contenuto pertinente
- AWS UFFICIALEAggiornata 4 mesi fa
- AWS UFFICIALEAggiornata 2 anni fa
- AWS UFFICIALEAggiornata 3 anni fa
We are having the same problem. For us, it looks like systems manager inventory is retaining the old version of snapd even though it isn't on the system and not returned by dpkg-query