Test document

...

CVE-ID	CVSS	NVD	Fix/Notes	PACKAGES
CVE-2005-2541	10.0	https://nvd.nist.gov/vuln/detail/CVE-2005-2541	No fix available	tar
CVE-2014-2830	10.0	https://nvd.nist.gov/vuln/detail/CVE-2014-2830	No fix available	cifs-utils
CVE-2016-1585	9.8	https://nvd.nist.gov/vuln/detail/CVE-2016-1585	No fix available	libapparmor1
CVE-2017-17479	9.8	https://nvd.nist.gov/vuln/detail/CVE-2017-17479	No fix available	libopenjp2-7
CVE-2017-9117	9.8	https://nvd.nist.gov/vuln/detail/CVE-2017-9117	No fix available	libtiff5
CVE-2018-13410	9.8	https://nvd.nist.gov/vuln/detail/CVE-2018-13410	No fix available	zip
CVE-2019-1010022	9.8	https://nvd.nist.gov/vuln/detail/CVE-2019-1010022	No fix available	libc-bin, libc-dev-bin, libc-devtools, libc-l10n, libc6, libc6-dbg, libc6-dev, locales
CVE-2019-8341	9.8	https://nvd.nist.gov/vuln/detail/CVE-2019-8341	No fix available	python3-jinja2
CVE-2020-27619	9.8	https://nvd.nist.gov/vuln/detail/CVE-2020-27619	No fix available	python3.9
CVE-2021-29462	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-29462	No fix available	libixml10, libupnp13
CVE-2021-29921	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-29921	Reported fixed in python3.9 (installed), but still reported by Vuls	python3.9
CVE-2021-30473	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-30473	No fix available	libaom0
CVE-2021-30474	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-30474	No fix available	libaom0
CVE-2021-30475	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-30475	No fix available	libaom0
CVE-2021-30498	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-30498	No fix available	libcaca0
CVE-2021-30499	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-30499	No fix available	libcaca0
CVE-2021-3756	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-3756	install libmysofa 1.2.1	libmysofa1
CVE-2021-42377	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-42377	No fix available	busybox
CVE-2021-45951	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-45951	No fix available	dnsmasq
CVE-2021-45952	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-45952	No fix available	dnsmasq
CVE-2021-45953	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-45953	No fix available	dnsmasq
CVE-2021-45954	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-45954	No fix available	dnsmasq
CVE-2021-45955	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-45955	No fix available	dnsmasq
CVE-2021-45956	9.8	https://nvd.nist.gov/vuln/detail/CVE-2021-45956	No fix available	dnsmasq
CVE-2022-0318	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-0318	unistall vim	vim
CVE-2022-23303	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-23303	No fix available	hostapd, wpasupplicant
CVE-2022-23304	9.8	https://nvd.nist.gov/vuln/detail/CVE-2022-23304	No fix available	hostapd, wpasupplicant
CVE-2021-22945	9.1	https://nvd.nist.gov/vuln/detail/CVE-2021-22945	unistall curl	curl
CVE-2021-4048	9.1	https://nvd.nist.gov/vuln/detail/CVE-2021-4048	No fix available	libblas3, liblapack3
CVE-2021-43400	9.1	https://nvd.nist.gov/vuln/detail/CVE-2021-43400	No fix available	bluez

Lynis

Nexus URL(before fix): https://nexus.akraino.org/content/sites/logs/fujitsu/job/robot-family/sses-lynis/11

Nexus URL(after fix): https://nexus.akraino.org/content/sites/logs/fujitsu/job/robot-family/sses-lynis/3

The initial results compare with the Lynis Incubation: PASS/FAIL Criteria, v1.0 as follows.

IoT Gateway

The Lynis Program Update test MUST pass with no errors.

Code Block

2022-03-29 22:55:42 Test: Checking for program update...
2022-03-29 22:55:43 Current installed version  : 308
2022-03-29 22:55:43 Latest stable version      : 307
2022-03-29 22:55:43 No Lynis update available.

...

PC/Server for robot control

The Lynis Program Update test MUST pass with no errors.

Code Block

2022-03-23 05:13:56 Test: Checking for program update...
2022-03-23 05:14:03 Current installed version : 308
2022-03-23 05:14:03 Latest stable version : 307
2022-03-23 05:14:03 No Lynis update available

...

Versions Compared

Old Version 16

New Version 17

Key

Test document

Lynis

IoT Gateway

PC/Server for robot control

Page Comparison

Versions Compared

Old Version 16

New Version 17

Key

Lynis

IoT Gateway

PC/Server for robot control