Ebischoff/master

compute/public_sector/Release_Findings/v30_01_153/v30_01_153.adoc

@@ -21,7 +21,6 @@ Findings for Prisma Cloud Compute Console.
 
 You can find the OpenSCAP report https://cdn.twistlock.com/docs/attachments/openscap_console_30_01_153_stig.html[here]
 
-
 [cols="4,4,4,4", options="header"]
 |===
 
@@ -58,21 +57,44 @@ You can find the OpenSCAP report https://cdn.twistlock.com/docs/attachments/open
 
 |===
 
+
 ==== Vulnerabilities full report
 
 
 You can find the full vulnerabilities report https://docs.google.com/spreadsheets/d/1jZwm_dMBQ5tr0ilEIdGkbLHnQCdj04CxU7o-VSwizuo/edit#gid=1038380747[here].
 
-
 [cols="3,4,4,4,4", options="header"]
-//|===
+|===
 
 |CVE
 |Package
 |Version
 |Fix Status
 |Justification
 
+|CVE-2022-1996
+|go-restful
+|2.9.5
+|Fixed in 3.8.0
+|The package is a transitive dependency that is being pulled with k8s.io/client-go and k8s.io/kube-openapi, and is not being used directly in the Compute Defender and Console. 
+
+|CVE-2023-29402
+|go
+|1.20.4
+|fixed in 1.20.5, 1.19.10
+|To be patched in next update, Maxwell Update 2
+
+|CVE-2023-29404
+|go
+|1.20.4
+|fixed in 1.20.5, 1.19.10
+|To be patched in next update, Maxwell Update 2
+
+|CVE-2023-29405
+|go
+|1.20.4
+|fixed in 1.20.5, 1.19.10
+|To be patched in next update, Maxwell Update 2
 
 |===
 
@@ -122,6 +144,28 @@ You can find the full vulnerabilities report https://docs.google.com/spreadsheet
 |Fix Status
 |Justification
 
-
+|CVE-2022-1996
+|go-restful
+|2.9.5
+|Fixed in 3.8.0
+|The package is a transitive dependency that is being pulled with k8s.io/client-go and k8s.io/kube-openapi, and is not being used directly in the Compute Defender and Console. 
+
+|CVE-2023-29402
+|go
+|1.20.4
+|fixed in 1.20.5, 1.19.10
+|To be patched in next update, Maxwell Update 2 
+
+|CVE-2023-29404
+|go
+|1.20.4
+|fixed in 1.20.5, 1.19.10
+|To be patched in next update, Maxwell Update 2
+
+|CVE-2023-29405
+|go
+|1.20.4
+|fixed in 1.20.5, 1.19.10
+|To be patched in next update, Maxwell Update 2
 
 |===

compute/public_sector/Release_Findings/v30_02_123/v30_02_123.adoc

@@ -47,7 +47,22 @@ You can find the OpenSCAP report https://cdn.twistlock.com/docs/attachments/open
 
 You can find the full vulnerabilities report https://docs.google.com/spreadsheets/d/1jZwm_dMBQ5tr0ilEIdGkbLHnQCdj04CxU7o-VSwizuo/edit#gid=591762497[here].
 
+[cols="3,4,4,4,4", options="header"]
+|===
+
+|CVE
+|Package
+|Version
+|Fix Status
+|Justification
 
+|CVE-2022-1996
+|go-restful
+|2.9.5
+|Fixed in 3.8.0
+|The package is a transitive dependency that is being pulled with k8s.io/client-go and k8s.io/kube-openapi, and is not being used directly in the Compute Defender and Console. 
+
+|===
 
 === twistlock/private:defender_30_02_123
 
@@ -62,5 +77,21 @@ You can find the OpenSCAP report https://cdn.twistlock.com/docs/attachments/open
 
 You can find the full vulnerabilities report https://docs.google.com/spreadsheets/d/1jZwm_dMBQ5tr0ilEIdGkbLHnQCdj04CxU7o-VSwizuo/edit#gid=1319211367[here].
 
+[cols="3,4,4,4,4", options="header"]
+|===
+
+|CVE
+|Package
+|Version
+|Fix Status
+|Justification
+
+|CVE-2022-1996
+|go-restful
+|2.9.5
+|Fixed in 3.8.0
+|The package is a transitive dependency that is being pulled with k8s.io/client-go and k8s.io/kube-openapi, and is not being used directly in the Compute Defender and Console. 
+
+|===
 
 

compute/public_sector/Release_Findings/v30_03_122/v30_03_122.adoc

@@ -42,12 +42,27 @@ You can find the OpenSCAP report https://cdn.twistlock.com/docs/attachments/open
 
 |===
 
-==== Vulnerabilities full report
 
+==== Vulnerabilities full report
 
 You can find the full vulnerabilities report https://docs.google.com/spreadsheets/d/1jZwm_dMBQ5tr0ilEIdGkbLHnQCdj04CxU7o-VSwizuo/edit#gid=899808966[here].
 
+[cols="3,4,4,4,4", options="header"]
+|===
+
+|CVE
+|Package
+|Version
+|Fix Status
+|Justification
+
+|CVE-2022-1996
+|go-restful
+|2.9.5
+|Fixed in 3.8.0
+|The package is a transitive dependency that is being pulled with k8s.io/client-go and k8s.io/kube-openapi, and is not being used directly in the Compute Defender and Console. 
 
+|===
 
 === twistlock/private:defender_30_03_122
 
@@ -62,5 +77,20 @@ You can find the OpenSCAP report https://cdn.twistlock.com/docs/attachments/open
 
 You can find the full vulnerabilities report https://docs.google.com/spreadsheets/d/1jZwm_dMBQ5tr0ilEIdGkbLHnQCdj04CxU7o-VSwizuo/edit#gid=1684081302[here].
 
+[cols="3,4,4,4,4", options="header"]
+|===
+
+|CVE
+|Package
+|Version
+|Fix Status
+|Justification
+
+|CVE-2022-1996
+|go-restful
+|2.9.5
+|Fixed in 3.8.0
+|The package is a transitive dependency that is being pulled with k8s.io/client-go and k8s.io/kube-openapi, and is not being used directly in the Compute Defender and Console. 
 
+|===
 

compute/public_sector/Release_Findings/v31_00_129/attachments/disa-stig-report-31-00-129.txt

@@ -0,0 +1,8 @@
+OpenSCAP and vulnerability scan report:
+Prisma Cloud Compute release: 31_00_129
+Base image: registry.access.redhat.com/ubi8/ubi-minimal:8.8
+Benchmark URL: scap-security-guide-0.1.69/ssg-rhel8-ds.xml
+Benchmark ID: xccdf_org.ssgproject.content_benchmark_RHEL-8
+Profile ID: xccdf_org.ssgproject.content_profile_stig
+Compared to IronBank's UBI8-minimal, Version 8.8, Build Date: 2023-05-03T15:02:09
+Env Host: 10.188.140.117