2 個答案
- 最新
- 最多得票
- 最多評論
1
We are on the Basic Support Plan, unfortunately. I spent a couple hours looking into this today, and still believe Inspector2 is misreporting. Here's an excerpt from the finding:
...
"vulnerabilityId": "CVE-2021-44731",
"vulnerablePackages": [
{
"arch": "ALL",
"epoch": 0,
"name": "snapd",
"packageManager": "OS",
"version": "2.54.3"
}
],
...
And from CVE-2021-44731:
Fixed in snapd versions 2.54.3+18.04, 2.54.3+20.04 and 2.54.3+21.10.1
I'd rather not suppress this finding. Does anyone have any other suggestions?
已回答 2 年前
0
Please create a support case providing details for the AWS support team to investigate and provide guidance on this.
Thanks.
已回答 2 年前
相關內容
- 已提問 6 個月前
- 已提問 6 個月前
- AWS 官方已更新 1 年前
- AWS 官方已更新 2 年前
We are having the same problem. For us, it looks like systems manager inventory is retaining the old version of snapd even though it isn't on the system and not returned by dpkg-query