commit | 18fd808f5c7f09fa91513e6a63a59791f7c0a8a5 | [log] [tgz] |
---|---|---|
author | Jonathan Amsterdam <jba@google.com> | Wed Mar 23 09:35:46 2022 -0400 |
committer | Jonathan Amsterdam <jba@google.com> | Thu Mar 24 00:53:16 2022 +0000 |
tree | 190c4d4361bb78b5beead034e58b7dd7076af308 | |
parent | 0396c4c102e274da19a8eb032d2b84198d1709c9 [diff] |
cmd/govulncheck: summarized call stacks This CL is another attempt at compact but helpful default output. For each vuln, pick a single call stack and summarize it. The vulncheck package sorts the call stacks in a reasonable way, so we use the first one. Sample output: Change-Id: I9a2928a4ce1f3b79f9c6b09e79cd2c53490756b5 --- package: github.com/opencontainers/selinux/go-selinux your version: v0.0.0-20170621221121-4a2974bf1ee9 fixed version: v1.0.0-rc8.0.20190930145003-cad42f6e0932 sample call stacks: k8s.io/kubernetes/pkg/util/selinux.SELinuxEnabled calls github.com/opencontainers/selinux/go-selinux.GetEnabled k8s.io/kubernetes/pkg/util/selinux.SetFileLabel calls github.com/opencontainers/selinux/go-selinux.SetFileLabel k8s.io/kubernetes/pkg/util/selinux.realSELinuxRunner.Getfilecon calls github.com/opencontainers/selinux/go-selinux.FileLabel reference: https://pkg.go.dev/vuln/GO-2021-0085 description: AppArmor restrictions may be bypassed due to improper validation of mount targets, allowing a malicious image to mount volumes over e.g. /proc. --- Change-Id: I982228e84dcd71870d67a467fd789547ef24d484 Reviewed-on: https://go-review.googlesource.com/c/vuln/+/395156 Trust: Jonathan Amsterdam <jba@google.com> Run-TryBot: Jonathan Amsterdam <jba@google.com> Reviewed-by: Zvonimir Pavlinovic <zpavlinovic@google.com>
This repository contains the following:
The code in this repository is under active development and not to be considered stable.
Unless otherwise noted, the Go source files are distributed under the BSD-style license found in the LICENSE file.
Database entries available at https://storage.googleapis.com/go-vulndb/ are distributed under the terms of the CC-BY 4.0 license.