You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Description:
We are using the Docker image mcr.microsoft.com/azure-functions/dotnet-isolated:4-dotnet-isolated8.0. This image includes Microsoft.AspNetCore.App.Runtime.linux-x64, which is affected by https://nvd.nist.gov/vuln/detail/CVE-2024-38229. Please update Microsoft.AspNetCore.App.Runtime.linux-x64 to a version that addresses this vulnerability.
Steps to Reproduce:
Use mcr.microsoft.com/azure-functions/dotnet-isolated:4-dotnet-isolated8.0 in a Dockerfile.
Run a vulnerability scan (I'm using Aqua).
Expected Behavior:
No critical vulnerabilities should be present.
Description:
We are using the Docker image mcr.microsoft.com/azure-functions/dotnet-isolated:4-dotnet-isolated8.0. This image includes Microsoft.AspNetCore.App.Runtime.linux-x64, which is affected by https://nvd.nist.gov/vuln/detail/CVE-2024-38229. Please update Microsoft.AspNetCore.App.Runtime.linux-x64 to a version that addresses this vulnerability.
Steps to Reproduce:
Use mcr.microsoft.com/azure-functions/dotnet-isolated:4-dotnet-isolated8.0 in a Dockerfile.
Run a vulnerability scan (I'm using Aqua).
Expected Behavior:
No critical vulnerabilities should be present.
Actual Behavior:
https://nvd.nist.gov/vuln/detail/CVE-2024-38229 is detected due to Microsoft.AspNetCore.App.Runtime.linux-x64 version 8.0.8.
The text was updated successfully, but these errors were encountered: