empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-07 01:15:22 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
0853d338f8
fleet/cmd
History
Michal Nicpon 9ad1721efd
fix issue with duplicate vulns detected using nvd (#8613) 
The OVAL analyzer falsely assumes that any vulnerabilities detected on a
host only come from OVAL. However, it is possible that NVD detects
vulnerabilities on these hosts even though it excludes software from
deb_packages and rpm_packages. For example, a python package twisted
v22.20 has a vulnerability CVE-2022-39348 detected by NVD. The OVAL
analyzer would delete this vulnerability, and it would be re-inserted by
the NVD scanner on the next run. This creates a loop.

The fix is to only delete vulnerabilities that are actually detected
using OVAL. We already store this in the source column in the
software_cve table.
2022-11-10 10:28:00 -07:00
..
cpe Fixes various bugs with NVD vulnerability detection (#7963) 2022-10-04 07:04:48 -04:00
fleet fix issue with duplicate vulns detected using nvd (#8613) 2022-11-10 10:28:00 -07:00
fleetctl Fix bug with fleetctl apply for teams, clear agent options only if key is present (#8508) 2022-11-01 15:22:45 -04:00
msrc Feature 7494: Use the MSRC security bulletin artifacts for detecting Win OS vulnerabilities (#7889) 2022-10-28 11:12:21 -04:00
osquery-perf Ingest disk encryption flag for hosts, return in GET /hosts/{id} endpoint (#8526) 2022-11-02 15:44:02 -04:00