jgsqware
Clairctl scan report not found mysql vulnerabilities, but the current mysql version does exist vulnerabilities
from mysql image: ii mysql-client 5.7.10-1debian8 amd64 MySQL Client meta package depending on latest version ii mysql-common 5.7.10-1debian8 amd64 MySQL configuration for client and server ii mysql-community-client 5.7.10-1debian8 amd64 MySQL Client and client tools ii mysql-community-server 5.7.10-1debian8 amd64 MySQL Server and server tools
request clair: curl http://172.17.0.3:6060/v1/namespaces/debian%3A8/vulnerabilities/CVE-2017-3450?fixedIn {"Vulnerability":{"Name":"CVE-2017-3450","NamespaceName":"debian:8","Description":"Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).","Link":"https://security-tracker.debian.org/tracker/CVE-2017-3450","Severity":"Medium"}}
Clairctl scan report not found mysql vulnerabilities, but the current mysql version does exist vulnerabilities
What command are you using?
On ven. 18 août 2017 02:53 wtlecit1 [email protected] wrote:
Clairctl scan report not found mysql vulnerabilities, but the current mysql version does exist vulnerabilities
— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/jgsqware/clairctl/issues/80#issuecomment-323231534, or mute the thread https://github.com/notifications/unsubscribe-auth/ADJrq2GhnnbAnmsMdM0upbx93BRJfQYaks5sZOB2gaJpZM4O5_pQ .
(1)clairctl pull 172.17.0.5:5000/mysql:20170802_5.7.10 9 layers found ➜ sha256:f8623fb790bfa6104ffc9c9f19ef0620e0a321c9d3a7372d3565c858527139fe ➜ sha256:30dc85215b4bdf3f0f53c2cc80a115b439aea23a27ff54521765c6d0ca98b918 ➜ sha256:b2c76bc4302b1c26bc228af419276cd834652135afc4e13c0638e9062dad4ebf ➜ sha256:aeb818dfdb35e12eeabb831a589ee258ce2eea97d76d4475dc6a36c73987f05c ➜ sha256:39af6ba257646ee5430abb45830cfa6786f748b363c15554bdfba82b74b365a8 ➜ sha256:203d2970d1d280f3e83c91f15a6bcfd7968858fc7eed547ee1c00370e67c6e97 ➜ sha256:c9613baf46f0ef4f9e2aeba7c573ee33abba8d149f0e8c55ab0ffbb6746942c0 ➜ sha256:50d1409c634360737c5baa6b16dda25233e3846dfaaff88e2c53992d4889b91a ➜ sha256:c21dc1c5175ad45adadd527c0cc31a59fa3fc0b6b98c561e92a2361d072be770 (2)clairctl push 172.17.0.5:5000/mysql:20170802_5.7.10 172.17.0.5:5000/mysql:20170802_5.7.10 has been pushed to Clair (3)clairctl analyze 172.17.0.5:5000/mysql:20170802_5.7.10 9 layers found
➜ Analysis [sha256:c21dc] found 111 vulnerabilities. ➜ Analysis [sha256:50d14] found 111 vulnerabilities. ➜ Analysis [sha256:c9613] found 111 vulnerabilities. ➜ Analysis [sha256:203d2] found 111 vulnerabilities. ➜ Analysis [sha256:39af6] found 111 vulnerabilities. ➜ Analysis [sha256:aeb81] found 111 vulnerabilities. ➜ Analysis [sha256:b2c76] found 111 vulnerabilities. ➜ Analysis [sha256:30dc8] found 111 vulnerabilities. ➜ Analysis [sha256:f8623] found 111 vulnerabilities. (4)clairctl report 172.17.0.5:5000/mysql:20170802_5.7.10 HTML report at /reports/html/analysis-172.17.0.5:5000/mysql:20170802_5.7.10.html
what's the result of clairctl analyze --log-level=debug 172.18.0.5:5000/mysql:20170802_5.7.10
Le ven. 18 août 2017 à 08:38, wtlecit1 [email protected] a écrit :
clairctl pull 172.18.0.5:5000/mysql:20170802_5.7.10 clairctl push 172.18.0.5:5000/mysql:20170802_5.7.10 clairctl analyze 172.18.0.5:5000/mysql:20170802_5.7.10 clairctl report 172.18.0.5:5000/mysql:20170802_5.7.10
— You are receiving this because you commented. Reply to this email directly, view it on GitHub https://github.com/jgsqware/clairctl/issues/80#issuecomment-323272612, or mute the thread https://github.com/notifications/unsubscribe-auth/ADJrq79-65X19VfeiLSxZgUuAk4qtfbwks5sZTF-gaJpZM4O5_pQ .
2017-08-18 08:28:58.060709 D | config: Using config file: /home/clairctl/clairctl.yml 2017-08-18 08:28:58.060964 D | dockerdist: Downloading manifest for 172.17.0.5:5000/mysql:20170802_5.7.10 2017-08-18 08:28:58.061078 D | dockerdist: Retrieving repository client 2017-08-18 08:28:58.061173 D | dockerdist: endpoint.TLSConfig.InsecureSkipVerify: true 2017-08-18 08:28:58.073841 D | dockerdist: manifest type: *schema2.DeserializedManifest 2017-08-18 08:28:58.073857 D | dockerdist: retrieved schema2 manifest, no verification 2017-08-18 08:28:58.073892 I | config: retrieving interface for local IP 2017-08-18 08:28:58.073900 D | config: no interface provided, looking for docker0 2017-08-18 08:28:58.073980 D | config: docker0 not found, looking for first connected broadcast interface 2017-08-18 08:28:58.074105 I | clair: Pushing Layer 1/9 [sha256:f8623] 2017-08-18 08:28:58.074163 D | clair: Saving sha256:f8623fb790bfa6104ffc9c9f19ef0620e0a321c9d3a7372d3565c858527139fe[http://172.17.0.5:5000/v2] 2017-08-18 08:28:58.074229 D | clair: auth.insecureSkipVerify: true 2017-08-18 08:28:58.074245 D | clair: request.URL.String(): http://172.17.0.5:5000/v2/mysql/blobs/sha256:f8623fb790bfa6104ffc9c9f19ef0620e0a321c9d3a7372d3565c858527139fe 2017-08-18 08:28:58.078974 I | clair: Pushing Layer 2/9 [sha256:30dc8] 2017-08-18 08:28:58.079042 D | clair: Saving sha256:30dc85215b4bdf3f0f53c2cc80a115b439aea23a27ff54521765c6d0ca98b918[http://172.17.0.5:5000/v2] 2017-08-18 08:28:58.079103 D | clair: auth.insecureSkipVerify: true 2017-08-18 08:28:58.079115 D | clair: request.URL.String(): http://172.17.0.5:5000/v2/mysql/blobs/sha256:30dc85215b4bdf3f0f53c2cc80a115b439aea23a27ff54521765c6d0ca98b918 2017-08-18 08:28:58.084218 I | clair: Pushing Layer 3/9 [sha256:b2c76] 2017-08-18 08:28:58.084279 D | clair: Saving sha256:b2c76bc4302b1c26bc228af419276cd834652135afc4e13c0638e9062dad4ebf[http://172.17.0.5:5000/v2] 2017-08-18 08:28:58.084333 D | clair: auth.insecureSkipVerify: true 2017-08-18 08:28:58.084345 D | clair: request.URL.String(): http://172.17.0.5:5000/v2/mysql/blobs/sha256:b2c76bc4302b1c26bc228af419276cd834652135afc4e13c0638e9062dad4ebf 2017-08-18 08:28:58.088608 I | clair: Pushing Layer 4/9 [sha256:aeb81] 2017-08-18 08:28:58.088666 D | clair: Saving sha256:aeb818dfdb35e12eeabb831a589ee258ce2eea97d76d4475dc6a36c73987f05c[http://172.17.0.5:5000/v2] 2017-08-18 08:28:58.088718 D | clair: auth.insecureSkipVerify: true 2017-08-18 08:28:58.088729 D | clair: request.URL.String(): http://172.17.0.5:5000/v2/mysql/blobs/sha256:aeb818dfdb35e12eeabb831a589ee258ce2eea97d76d4475dc6a36c73987f05c 2017-08-18 08:28:58.093796 I | clair: Pushing Layer 5/9 [sha256:39af6] 2017-08-18 08:28:58.093875 D | clair: Saving sha256:39af6ba257646ee5430abb45830cfa6786f748b363c15554bdfba82b74b365a8[http://172.17.0.5:5000/v2] 2017-08-18 08:28:58.093931 D | clair: auth.insecureSkipVerify: true 2017-08-18 08:28:58.093942 D | clair: request.URL.String(): http://172.17.0.5:5000/v2/mysql/blobs/sha256:39af6ba257646ee5430abb45830cfa6786f748b363c15554bdfba82b74b365a8 2017-08-18 08:28:58.097853 I | clair: Pushing Layer 6/9 [sha256:203d2] 2017-08-18 08:28:58.097923 D | clair: Saving sha256:203d2970d1d280f3e83c91f15a6bcfd7968858fc7eed547ee1c00370e67c6e97[http://172.17.0.5:5000/v2] 2017-08-18 08:28:58.097983 D | clair: auth.insecureSkipVerify: true 2017-08-18 08:28:58.097995 D | clair: request.URL.String(): http://172.17.0.5:5000/v2/mysql/blobs/sha256:203d2970d1d280f3e83c91f15a6bcfd7968858fc7eed547ee1c00370e67c6e97 2017-08-18 08:28:58.102042 I | clair: Pushing Layer 7/9 [sha256:c9613] 2017-08-18 08:28:58.102105 D | clair: Saving sha256:c9613baf46f0ef4f9e2aeba7c573ee33abba8d149f0e8c55ab0ffbb6746942c0[http://172.17.0.5:5000/v2] 2017-08-18 08:28:58.102163 D | clair: auth.insecureSkipVerify: true 2017-08-18 08:28:58.102177 D | clair: request.URL.String(): http://172.17.0.5:5000/v2/mysql/blobs/sha256:c9613baf46f0ef4f9e2aeba7c573ee33abba8d149f0e8c55ab0ffbb6746942c0 2017-08-18 08:28:58.107354 I | clair: Pushing Layer 8/9 [sha256:50d14] 2017-08-18 08:28:58.107419 D | clair: Saving sha256:50d1409c634360737c5baa6b16dda25233e3846dfaaff88e2c53992d4889b91a[http://172.17.0.5:5000/v2] 2017-08-18 08:28:58.107473 D | clair: auth.insecureSkipVerify: true 2017-08-18 08:28:58.107484 D | clair: request.URL.String(): http://172.17.0.5:5000/v2/mysql/blobs/sha256:50d1409c634360737c5baa6b16dda25233e3846dfaaff88e2c53992d4889b91a 2017-08-18 08:28:58.111337 I | clair: Pushing Layer 9/9 [sha256:c21dc] 2017-08-18 08:28:58.111418 D | clair: Saving sha256:c21dc1c5175ad45adadd527c0cc31a59fa3fc0b6b98c561e92a2361d072be770[http://172.17.0.5:5000/v2] 2017-08-18 08:28:58.111493 D | clair: auth.insecureSkipVerify: true 2017-08-18 08:28:58.111506 D | clair: request.URL.String(): http://172.17.0.5:5000/v2/mysql/blobs/sha256:c21dc1c5175ad45adadd527c0cc31a59fa3fc0b6b98c561e92a2361d072be770 2017-08-18 08:28:58.115382 I | config: retrieving interface for local IP 2017-08-18 08:28:58.115397 D | config: no interface provided, looking for docker0 2017-08-18 08:28:58.115470 D | config: docker0 not found, looking for first connected broadcast interface 2017-08-18 08:28:58.115642 D | clair: json: 172.17.0.5:5000/mysql:20170802_5.7.10 2017-08-18 08:28:58.130152 I | clair: analysing layer [sha256:c21dc] 1/9 2017-08-18 08:28:58.140751 I | clair: analysing layer [sha256:50d14] 2/9 2017-08-18 08:28:58.151773 I | clair: analysing layer [sha256:c9613] 3/9 2017-08-18 08:28:58.161517 I | clair: analysing layer [sha256:203d2] 4/9 2017-08-18 08:28:58.171001 I | clair: analysing layer [sha256:39af6] 5/9 2017-08-18 08:28:58.181181 I | clair: analysing layer [sha256:aeb81] 6/9 2017-08-18 08:28:58.190983 I | clair: analysing layer [sha256:b2c76] 7/9 2017-08-18 08:28:58.200795 I | clair: analysing layer [sha256:30dc8] 8/9 2017-08-18 08:28:58.210289 I | clair: analysing layer [sha256:f8623] 9/9
Image: 172.17.0.5:5000/172.17.0.5:5000/mysql:20170802_5.7.10 9 layers found
➜ Analysis [sha256:c21dc] found 111 vulnerabilities. ➜ Analysis [sha256:50d14] found 111 vulnerabilities. ➜ Analysis [sha256:c9613] found 111 vulnerabilities. ➜ Analysis [sha256:203d2] found 111 vulnerabilities. ➜ Analysis [sha256:39af6] found 111 vulnerabilities. ➜ Analysis [sha256:aeb81] found 111 vulnerabilities. ➜ Analysis [sha256:b2c76] found 111 vulnerabilities. ➜ Analysis [sha256:30dc8] found 111 vulnerabilities. ➜ Analysis [sha256:f8623] found 111 vulnerabilities.
Yes, the scan report has a display 111 vulnerability, but did not find mysql vulnerabilities