Latest RHEL7 image from Red Hat's docker registry is shown to be vulnerable to CVE-2019-10160 and CVE-2015-7540

Solution Verified - Updated -

Issue

  • Using oscap-docker image-cve to scan the latest rhel7 image shows the below:
Definition oval:com.redhat.rhsa:def:20191587: true
Definition oval:com.redhat.rhba:def:20152258: true
  • The image has a healthy index of A.

Environment

  • Red Hat Enterprise Linux 7.x
  • docker

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In