Latest RHEL7 image from Red Hat's docker registry is shown to be vulnerable to CVE-2019-10160 and CVE-2015-7540

Solution Verified - Updated -

Issue

  • Using oscap-docker image-cve to scan the latest rhel7 image shows the below:
Definition oval:com.redhat.rhsa:def:20191587: true
Definition oval:com.redhat.rhba:def:20152258: true
  • The image has a healthy index of A.

Environment

  • Red Hat Enterprise Linux 7.x
  • docker

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content