HAMi icon indicating copy to clipboard operation
HAMi copied to clipboard
verified publisher icon Project-HAMi

CVE high vulnerability

Open zhengbingxian opened this issue 3 years ago • 0 comments

  1. Issue description nvidia base image "nvidia/cuda:11.2.1-base-ubuntu20.04" has 4 CVE high vulnerabilitys。
  • libsasl2-2 CVE-2022-24407 install version: 2.1.27~101-g0780600+dfsg-3ubuntu2.3
  • libsasl2-modules-db CVE-2022-24407 install version: 2.1.27~101-g0780600+dfsg-3ubuntu2.3
  • libssl1.1 CVE-2022-0778 install version: 1.1.1-1ubuntu2.1~18.04.14
  • openssl CVE-2022-0778 install version: 1.1.1-1ubuntu2.1~18.04.14

Need to fix by ousrself.

  1. Steps to reproduce the issue NA

  2. suggest method to fix this

nvidia base image dockerfile is in repo address : https://gitlab.com/nvidia/container-images/cuda/-/blob/master/dist/11.2.1/ubuntu2004/base/Dockerfile

rebuild the base image can fix this problem

zhengbingxian avatar Mar 22 '22 08:03 zhengbingxian