Amazon Inspector False Positives On Patched Ubuntu Python Packages

As of a few days ago I started seeing Inspector findings related to by Ubuntu 20.04 LTS EC2 instances that appear to be false positives. For instance, CVE-2022-29217 was addressed by python3-jwt:1.7.1-2ubuntu2.1 (per https://ubuntu.com/security/CVE-2022-29217). The patched package version is installed on my instance. Why is the inspector finding still triggering? There are some other similar python package false-positives I am seeing.

Additional info: for this specific finding, the file path is /usr/lib/python3/dist-packages/PyJWT-1.7.1.egg-info/PKG-INFO. It seems that other findings / false positives related to python packages are based on the egg-info file. The security update didn't bump the python3-jwt version or the egg-info details, it only bumped the ubuntu package from 1.7.1-2ubuntu2 to 1.7.1-2ubuntu2.1.

Topics

Security, Identity, & Compliance

Relevant content

False positive from Inspector2
eugene
asked 2 years ago
GuardDuty False Positive Rates
AWS-User-2792197
asked 2 years ago
False positive in ECR container image detected by AWS Inspector v2 related with com.fasterxml.jackson.core:jackson-databind?
AWS-User-7745669
asked 2 years ago
CodeGuru Security handle false positives
fongie
asked a month ago
How do I set up Amazon Inspector Classic to run security assessments on my Amazon EC2 instances?
AWS OFFICIALUpdated 2 years ago
How do I upgrade Ubuntu on my EC2 Linux instance from one LTS version to another?
AWS OFFICIALUpdated 7 months ago
How can I install CloudFormation helper scripts on Ubuntu 16.04 LTS/Ubuntu 18.04 LTS/Ubuntu 20.04 LTS/Ubuntu 22.04 LTS or RHEL 9 AMIs?
AWS OFFICIALUpdated a year ago
Why is Amazon Inspector not scanning my Amazon EC2 instances?
AWS OFFICIALUpdated a year ago
Installing Python Package GeoPandas on Amazon Linux 2023 for Graviton
EXPERT
iBehr
published 2 months ago
Installing Python Package TensorFlow on Amazon Linux 2023 for Graviton
EXPERT
iBehr
published 13 days ago