Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

semaphore acquire... now getting the error of 2023-05-30T11:56:53.095+0500 WARN Error while getting vulnerability details: failed to get the vulnerability "CVE-2022-23816": no vulnerability details for CVE-2022-23816 #4497

Closed
2 tasks done
salmankhwaja opened this issue May 30, 2023 · 4 comments
Closed
2 tasks done

semaphore acquire... now getting the error of 2023-05-30T11:56:53.095+0500 WARN Error while getting vulnerability details: failed to get the vulnerability "CVE-2022-23816": no vulnerability details for CVE-2022-23816 #4497

salmankhwaja opened this issue May 30, 2023 · 4 comments
Labels
triage/duplicate Indicates an issue is a duplicate of other open issue.

Comments

@salmankhwaja
Copy link

Description

  1. Using the same docker images, only this time using with Docker Image Reset and trivy image debug timeout commands.

Desired Behavior

Trivy would output the vulnerabilities, licenses, and any other related issues with the container.

Actual Behavior

Trivy didn't scan the image. It spitted out the error of

2023-05-30T11:56:53.095+0500 WARN Error while getting vulnerability details: failed to get the vulnerability "CVE-2022-23816": no vulnerability details for CVE-2022-23816

Reproduction Steps

1. docker pull asnaishrat/asna:v1
2. docker images // run to ensure docker image is downloaded. 
3.  trivy image --reset
4.  trivy image asnaishrat/asna:v1  --timeout 15m --format json -o report.json

Target

Container Image

Scanner

Vulnerability

Output Format

Table (Default)

Mode

Standalone

Debug Output

[root@master-node ~]# trivy image asnaishrat/asna:v1  --timeout 15m --format json -o report.json
2023-05-30T11:19:33.413+0500    INFO    Need to update DB
2023-05-30T11:19:33.413+0500    INFO    DB Repository: ghcr.io/aquasecurity/trivy-db
2023-05-30T11:19:33.413+0500    INFO    Downloading DB...
37.38 MiB / 37.38 MiB [---------------------------------------------] 100.00% 3.67 MiB p/s 10s
2023-05-30T11:19:51.027+0500    INFO    Vulnerability scanning is enabled
2023-05-30T11:19:51.027+0500    INFO    Secret scanning is enabled
2023-05-30T11:19:51.027+0500    INFO    If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2023-05-30T11:19:51.027+0500    INFO    Please see also https://aquasecurity.github.io/trivy/v0.41/docs/secret/scanning/#recommendation for faster secret detection
2023-05-30T11:25:19.872+0500    INFO    JAR files found
2023-05-30T11:25:19.873+0500    INFO    Java DB Repository: ghcr.io/aquasecurity/trivy-java-db:1
2023-05-30T11:25:19.874+0500    INFO    Downloading the Java DB...
431.27 MiB / 431.27 MiB [-----------------------------------------] 100.00% 1.92 MiB p/s 3m45s
2023-05-30T11:29:09.436+0500    INFO    The Java DB is cached for 3 days. If you want to update the database more frequently, the '--reset' flag clears the DB cache.
2023-05-30T11:29:09.461+0500    INFO    Analyzing JAR files takes a while...
2023-05-30T11:29:14.352+0500    INFO    Detected OS: centos
2023-05-30T11:29:14.352+0500    INFO    Detecting RHEL/CentOS vulnerabilities...
2023-05-30T11:29:16.457+0500    INFO    Number of language-specific files: 2
2023-05-30T11:29:16.457+0500    INFO    Detecting node-pkg vulnerabilities...
2023-05-30T11:29:16.630+0500    INFO    Detecting python-pkg vulnerabilities...
2023-05-30T11:29:19.012+0500    WARN    Error while getting vulnerability details: failed to get the vulnerability "CVE-2022-23816": no vulnerability details for CVE-2022-23816
[root@master-node ~]# trivy image asnaishrat/asna:v1  --timeout 15m --format json -o report.json --debug
2023-05-30T11:47:00.646+0500    DEBUG   Severities: ["UNKNOWN" "LOW" "MEDIUM" "HIGH" "CRITICAL"]
2023-05-30T11:47:00.712+0500    DEBUG   cache dir:  /root/.cache/trivy
2023-05-30T11:47:00.723+0500    DEBUG   DB update was skipped because the local DB is the latest
2023-05-30T11:47:00.725+0500    DEBUG   DB Schema: 2, UpdatedAt: 2023-05-30 06:09:36.570726802 +0000 UTC, NextUpdate: 2023-05-30 12:09:36.570726402 +0000 UTC, DownloadedAt: 2023-05-30 06:19:50.998626487 +0000 UTC
2023-05-30T11:47:00.743+0500    INFO    Vulnerability scanning is enabled
2023-05-30T11:47:00.743+0500    DEBUG   Vulnerability type:  [os library]
2023-05-30T11:47:00.744+0500    INFO    Secret scanning is enabled
2023-05-30T11:47:00.744+0500    INFO    If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2023-05-30T11:47:00.744+0500    INFO    Please see also https://aquasecurity.github.io/trivy/v0.41/docs/secret/scanning/#recommendation for faster secret detection
2023-05-30T11:47:01.178+0500    DEBUG   No secret config detected: trivy-secret.yaml
2023-05-30T11:47:01.179+0500    DEBUG   Image ID: sha256:bd3ba5ab0d9caec169cab556809245290588e0d78f8fdd953922803b26f78149
2023-05-30T11:47:01.179+0500    DEBUG   Diff IDs: [sha256:f972d139738dfcd1519fd2461815651336ee25a8b54c358834c50af094bb262f sha256:ee91fde71dbed5eac3d296eeeef4cb75f6d823ccba395c3f5907776edc91f029 sha256:2e080d596c63258624b9fc2b431315b885ade61e6d3a9acd56327c508de5e97b sha256:f61f2785ef9b715c9786afecc54127aad2f7546ee35c425b839200ad15c5beed sha256:68c0398b4d2d51c7adab1b61121721a68fc21c9866fa498e1cba13b098843459 sha256:f4fec09eab0d91b9f7635a972b1277d85bda2a92f518d722123dec19f7e79aea sha256:b0c573cc48d11b9fbc898c6cb390e13d1b322c914348e1df1b10732ad860bb05 sha256:19e5d164e6a50c218d4b60d85e72991b9e67a709fcebd8489fad081614ef3149 sha256:838473b89dfad83909cf69acf1d0607b3622ad3c9c796a5e4004c3071ce18a94 sha256:6d6c0741f3ab00f6b563518f64832944ec08af0f49a6ad20296485653c414406 sha256:bd83e3c47d8c177f24df7d4ceab9c9125bb4786c420419d5e267d10afcf197c2 sha256:9cb3a08a373c141f3ea66cf49b1ff194ccdba12fd6049ebadd04827075ed787a sha256:161314e5141410d3ca36456af1b38f4fb584c73883ae486538e0314a8d704379 sha256:9d42b94c043eeb553c055eb08b0eb9e03f330cf0c477420e82491a649e259fe1 sha256:b6e28ef9b1eb88a4a78b9e34d01ff6549863c38d7506b7ac4a2874c545147e24 sha256:49e1c95449609808d106fcfba0b777e5d2dc814781f5dfa6f0a050a26d513edd sha256:a04ca8f4d2a0e60c6aade6cd1405a2d8e5fd9ee5bee003e1b2812ea13205044f sha256:b9aed75bf6e613d463f75f800fac2ab63666ae79a2eebfa947f2798c0faa5985 sha256:695322a17baf82cc52e790964c7df053752a1361ac37660483b44df8328f9619 sha256:90d41e3bd80fa4da90da97b1ba973bfe5166f4a5571e5eadef7c2db0d1d4de58 sha256:fba18e1b3b637b80e3dcf72a8006c644b6c2d74b311cc1e2288e159ffc1a8d36 sha256:f6892e40e872683c11b7721de2c26a0ca6b69419881305bc4d5c1247f8957f83 sha256:18b7d2be6ff8e6d6a37001abe02e18fb7867a1c72af29a5ee2a87b6b9f2ad0a4 sha256:76c9c0aa0e3a8fe134edc92d589a0da6f4f980c0a17d9686f2d6fa10ad6d08e0 sha256:ad53b34a8169ceec2dccefc938feebc5a5d71270fecf36bd9b65e9284cae17d9 sha256:63d56b7f244547baf07a13916396016f3814f84a7e5b386fa2e4b517c496c3d8 sha256:e98da9ddbf93c1f530c478461e3c88ba55883f55eb934aebab1cb64aaedfc14b sha256:a3760fd4dd13fd885ed40ebb6f285a84b0054e76a412fcec859e52aba46f088c sha256:0d926ad372d8d3d9cd8331b9a5c3e973d36dab0e5ed6ab6a07a74bc176890822 sha256:bd8026bffb0c1411fe0de4b3af0f6030485304782f5a8a4bb89c24d8b3f78a4f sha256:ce3c56079f0153f4ae904877730a083902ce94ec760aa1229add48ee220972bd sha256:07c80edd519b49c3beaeb086fcd9e921c14710a1ebd9255ca63d9f8ac54d7987 sha256:decf49ffb9a5a45e749e8539c402cd6fa0e250812b0225c6be697bfc2297b745 sha256:01a9070dadbe42ae9f67144411b4043814311798393cd544dddcf77b7f6fedca sha256:c3df9bc37e5f4f9baf4c6316207423a7398ff0348da3a09e7aea1c4e754947d4 sha256:3773d4cfb9f7f503e9817535c091aa8b56eb7ce0b7984ecb9cce266386bb57ab sha256:829912f9035b64f9faa1bb6d8eddba9999c67aef65fcd43d91eac240d8be58ad sha256:5f19522722a08208e11d02bd425d51b648fac36302b787d976a981983537e89d sha256:1fa8288bc22d68be9b0dc369717d6f9b71c04e45b72ebaa994bfd25f9c891e8e sha256:e1ff1924489b869bbd048ceadf9d5dba5a278c2e7a8eb70e59463192fbc36ac2 sha256:709071f4238aca396ef260cbef6ff2f4c5dacb612bd163fd21cd1b6362e4d0d5 sha256:c4ac309bb690dddf3d9eff99a50f1082be338bcb9af05dadb8bf55a75ebcb3fa]
2023-05-30T11:47:01.179+0500    DEBUG   Base Layers: [sha256:f972d139738dfcd1519fd2461815651336ee25a8b54c358834c50af094bb262f]
2023-05-30T11:47:01.325+0500    INFO    Detected OS: centos
2023-05-30T11:47:01.325+0500    INFO    Detecting RHEL/CentOS vulnerabilities...
2023-05-30T11:47:01.325+0500    DEBUG   Red Hat: os version: 7
2023-05-30T11:47:01.325+0500    DEBUG   Red Hat: the number of packages: 224
2023-05-30T11:47:01.561+0500    INFO    Number of language-specific files: 2
2023-05-30T11:47:01.561+0500    INFO    Detecting python-pkg vulnerabilities...
2023-05-30T11:47:01.561+0500    DEBUG   Detecting library vulnerabilities, type: python-pkg, path:
2023-05-30T11:47:01.563+0500    INFO    Detecting node-pkg vulnerabilities...
2023-05-30T11:47:01.563+0500    DEBUG   Detecting library vulnerabilities, type: node-pkg, path:
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/ca-key.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/certs/demo/pca-cert.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/ms/keyCA.ss
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/npm/html/doc/misc/npm-config.html
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/dsa-ca.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/dsa-pca.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/pca-key.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/server.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/certs/demo/ca-cert.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/client.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/demoCA/private/cakey.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/s512-key.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/ms/keyU.ss
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/rsa8192.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/s1024key.pem
2023-05-30T11:47:01.589+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/server2.pem
2023-05-30T11:47:01.720+0500    WARN    Error while getting vulnerability details: failed to get the vulnerability "CVE-2022-23816": no vulnerability details for CVE-2022-23816
[root@master-node ~]# trivy image --reset
2023-05-30T11:47:13.302+0500    INFO    Removing DB file...
2023-05-30T11:47:13.511+0500    INFO    Removing artifact caches...
[root@master-node ~]# trivy image asnaishrat/asna:v1  --timeout 15m --format json -o report.json --debug
2023-05-30T11:47:18.170+0500    DEBUG   Severities: ["UNKNOWN" "LOW" "MEDIUM" "HIGH" "CRITICAL"]
2023-05-30T11:47:18.279+0500    DEBUG   cache dir:  /root/.cache/trivy
2023-05-30T11:47:18.279+0500    DEBUG   There is no valid metadata file: unable to open a file: open /root/.cache/trivy/db/metadata.json: no such file or directory
2023-05-30T11:47:18.279+0500    INFO    Need to update DB
2023-05-30T11:47:18.279+0500    INFO    DB Repository: ghcr.io/aquasecurity/trivy-db
2023-05-30T11:47:18.279+0500    INFO    Downloading DB...
2023-05-30T11:47:18.279+0500    DEBUG   no metadata file
37.38 MiB / 37.38 MiB [---------------------------------------------] 100.00% 3.28 MiB p/s 12s
2023-05-30T11:47:31.712+0500    DEBUG   Updating database metadata...
2023-05-30T11:47:31.736+0500    DEBUG   DB Schema: 2, UpdatedAt: 2023-05-30 06:09:36.570726802 +0000 UTC, NextUpdate: 2023-05-30 12:09:36.570726402 +0000 UTC, DownloadedAt: 2023-05-30 06:47:31.715466791 +0000 UTC
2023-05-30T11:47:31.737+0500    INFO    Vulnerability scanning is enabled
2023-05-30T11:47:31.737+0500    DEBUG   Vulnerability type:  [os library]
2023-05-30T11:47:31.737+0500    INFO    Secret scanning is enabled
2023-05-30T11:47:31.737+0500    INFO    If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2023-05-30T11:47:31.737+0500    INFO    Please see also https://aquasecurity.github.io/trivy/v0.41/docs/secret/scanning/#recommendation for faster secret detection
2023-05-30T11:47:31.839+0500    DEBUG   No secret config detected: trivy-secret.yaml
2023-05-30T11:47:31.839+0500    DEBUG   Image ID: sha256:bd3ba5ab0d9caec169cab556809245290588e0d78f8fdd953922803b26f78149
2023-05-30T11:47:31.839+0500    DEBUG   Diff IDs: [sha256:f972d139738dfcd1519fd2461815651336ee25a8b54c358834c50af094bb262f sha256:ee91fde71dbed5eac3d296eeeef4cb75f6d823ccba395c3f5907776edc91f029 sha256:2e080d596c63258624b9fc2b431315b885ade61e6d3a9acd56327c508de5e97b sha256:f61f2785ef9b715c9786afecc54127aad2f7546ee35c425b839200ad15c5beed sha256:68c0398b4d2d51c7adab1b61121721a68fc21c9866fa498e1cba13b098843459 sha256:f4fec09eab0d91b9f7635a972b1277d85bda2a92f518d722123dec19f7e79aea sha256:b0c573cc48d11b9fbc898c6cb390e13d1b322c914348e1df1b10732ad860bb05 sha256:19e5d164e6a50c218d4b60d85e72991b9e67a709fcebd8489fad081614ef3149 sha256:838473b89dfad83909cf69acf1d0607b3622ad3c9c796a5e4004c3071ce18a94 sha256:6d6c0741f3ab00f6b563518f64832944ec08af0f49a6ad20296485653c414406 sha256:bd83e3c47d8c177f24df7d4ceab9c9125bb4786c420419d5e267d10afcf197c2 sha256:9cb3a08a373c141f3ea66cf49b1ff194ccdba12fd6049ebadd04827075ed787a sha256:161314e5141410d3ca36456af1b38f4fb584c73883ae486538e0314a8d704379 sha256:9d42b94c043eeb553c055eb08b0eb9e03f330cf0c477420e82491a649e259fe1 sha256:b6e28ef9b1eb88a4a78b9e34d01ff6549863c38d7506b7ac4a2874c545147e24 sha256:49e1c95449609808d106fcfba0b777e5d2dc814781f5dfa6f0a050a26d513edd sha256:a04ca8f4d2a0e60c6aade6cd1405a2d8e5fd9ee5bee003e1b2812ea13205044f sha256:b9aed75bf6e613d463f75f800fac2ab63666ae79a2eebfa947f2798c0faa5985 sha256:695322a17baf82cc52e790964c7df053752a1361ac37660483b44df8328f9619 sha256:90d41e3bd80fa4da90da97b1ba973bfe5166f4a5571e5eadef7c2db0d1d4de58 sha256:fba18e1b3b637b80e3dcf72a8006c644b6c2d74b311cc1e2288e159ffc1a8d36 sha256:f6892e40e872683c11b7721de2c26a0ca6b69419881305bc4d5c1247f8957f83 sha256:18b7d2be6ff8e6d6a37001abe02e18fb7867a1c72af29a5ee2a87b6b9f2ad0a4 sha256:76c9c0aa0e3a8fe134edc92d589a0da6f4f980c0a17d9686f2d6fa10ad6d08e0 sha256:ad53b34a8169ceec2dccefc938feebc5a5d71270fecf36bd9b65e9284cae17d9 sha256:63d56b7f244547baf07a13916396016f3814f84a7e5b386fa2e4b517c496c3d8 sha256:e98da9ddbf93c1f530c478461e3c88ba55883f55eb934aebab1cb64aaedfc14b sha256:a3760fd4dd13fd885ed40ebb6f285a84b0054e76a412fcec859e52aba46f088c sha256:0d926ad372d8d3d9cd8331b9a5c3e973d36dab0e5ed6ab6a07a74bc176890822 sha256:bd8026bffb0c1411fe0de4b3af0f6030485304782f5a8a4bb89c24d8b3f78a4f sha256:ce3c56079f0153f4ae904877730a083902ce94ec760aa1229add48ee220972bd sha256:07c80edd519b49c3beaeb086fcd9e921c14710a1ebd9255ca63d9f8ac54d7987 sha256:decf49ffb9a5a45e749e8539c402cd6fa0e250812b0225c6be697bfc2297b745 sha256:01a9070dadbe42ae9f67144411b4043814311798393cd544dddcf77b7f6fedca sha256:c3df9bc37e5f4f9baf4c6316207423a7398ff0348da3a09e7aea1c4e754947d4 sha256:3773d4cfb9f7f503e9817535c091aa8b56eb7ce0b7984ecb9cce266386bb57ab sha256:829912f9035b64f9faa1bb6d8eddba9999c67aef65fcd43d91eac240d8be58ad sha256:5f19522722a08208e11d02bd425d51b648fac36302b787d976a981983537e89d sha256:1fa8288bc22d68be9b0dc369717d6f9b71c04e45b72ebaa994bfd25f9c891e8e sha256:e1ff1924489b869bbd048ceadf9d5dba5a278c2e7a8eb70e59463192fbc36ac2 sha256:709071f4238aca396ef260cbef6ff2f4c5dacb612bd163fd21cd1b6362e4d0d5 sha256:c4ac309bb690dddf3d9eff99a50f1082be338bcb9af05dadb8bf55a75ebcb3fa]
2023-05-30T11:47:31.839+0500    DEBUG   Base Layers: [sha256:f972d139738dfcd1519fd2461815651336ee25a8b54c358834c50af094bb262f]
2023-05-30T11:47:31.847+0500    DEBUG   Missing image ID in cache: sha256:bd3ba5ab0d9caec169cab556809245290588e0d78f8fdd953922803b26f78149
2023-05-30T11:47:31.848+0500    DEBUG   Missing diff ID in cache: sha256:68c0398b4d2d51c7adab1b61121721a68fc21c9866fa498e1cba13b098843459
2023-05-30T11:47:31.848+0500    DEBUG   Missing diff ID in cache: sha256:f972d139738dfcd1519fd2461815651336ee25a8b54c358834c50af094bb262f
2023-05-30T11:47:31.849+0500    DEBUG   Missing diff ID in cache: sha256:ee91fde71dbed5eac3d296eeeef4cb75f6d823ccba395c3f5907776edc91f029
2023-05-30T11:47:31.849+0500    DEBUG   Missing diff ID in cache: sha256:2e080d596c63258624b9fc2b431315b885ade61e6d3a9acd56327c508de5e97b
2023-05-30T11:47:31.849+0500    DEBUG   Missing diff ID in cache: sha256:f61f2785ef9b715c9786afecc54127aad2f7546ee35c425b839200ad15c5beed
2023-05-30T11:52:50.078+0500    DEBUG   Skipping directory: dev
2023-05-30T11:52:50.364+0500    DEBUG   Skipping directory: proc
2023-05-30T11:52:50.365+0500    DEBUG   Skipping directory: sys
2023-05-30T11:52:50.837+0500    DEBUG   Missing diff ID in cache: sha256:f4fec09eab0d91b9f7635a972b1277d85bda2a92f518d722123dec19f7e79aea
2023-05-30T11:52:51.454+0500    DEBUG   Missing diff ID in cache: sha256:b0c573cc48d11b9fbc898c6cb390e13d1b322c914348e1df1b10732ad860bb05
2023-05-30T11:52:52.058+0500    DEBUG   Missing diff ID in cache: sha256:19e5d164e6a50c218d4b60d85e72991b9e67a709fcebd8489fad081614ef3149
2023-05-30T11:52:53.308+0500    DEBUG   Missing diff ID in cache: sha256:838473b89dfad83909cf69acf1d0607b3622ad3c9c796a5e4004c3071ce18a94
2023-05-30T11:52:55.343+0500    DEBUG   Missing diff ID in cache: sha256:6d6c0741f3ab00f6b563518f64832944ec08af0f49a6ad20296485653c414406
2023-05-30T11:52:57.418+0500    DEBUG   Missing diff ID in cache: sha256:bd83e3c47d8c177f24df7d4ceab9c9125bb4786c420419d5e267d10afcf197c2
2023-05-30T11:52:57.676+0500    DEBUG   Missing diff ID in cache: sha256:9cb3a08a373c141f3ea66cf49b1ff194ccdba12fd6049ebadd04827075ed787a
2023-05-30T11:52:57.909+0500    DEBUG   Missing diff ID in cache: sha256:161314e5141410d3ca36456af1b38f4fb584c73883ae486538e0314a8d704379
2023-05-30T11:52:59.684+0500    DEBUG   Missing diff ID in cache: sha256:9d42b94c043eeb553c055eb08b0eb9e03f330cf0c477420e82491a649e259fe1
2023-05-30T11:52:59.814+0500    DEBUG   Missing diff ID in cache: sha256:b6e28ef9b1eb88a4a78b9e34d01ff6549863c38d7506b7ac4a2874c545147e24
2023-05-30T11:53:00.030+0500    DEBUG   Missing diff ID in cache: sha256:49e1c95449609808d106fcfba0b777e5d2dc814781f5dfa6f0a050a26d513edd
2023-05-30T11:53:00.092+0500    DEBUG   Missing diff ID in cache: sha256:a04ca8f4d2a0e60c6aade6cd1405a2d8e5fd9ee5bee003e1b2812ea13205044f
2023-05-30T11:53:00.279+0500    DEBUG   Missing diff ID in cache: sha256:b9aed75bf6e613d463f75f800fac2ab63666ae79a2eebfa947f2798c0faa5985
2023-05-30T11:53:00.444+0500    DEBUG   Missing diff ID in cache: sha256:695322a17baf82cc52e790964c7df053752a1361ac37660483b44df8328f9619
2023-05-30T11:53:00.614+0500    DEBUG   Missing diff ID in cache: sha256:90d41e3bd80fa4da90da97b1ba973bfe5166f4a5571e5eadef7c2db0d1d4de58
2023-05-30T11:53:00.738+0500    DEBUG   Missing diff ID in cache: sha256:fba18e1b3b637b80e3dcf72a8006c644b6c2d74b311cc1e2288e159ffc1a8d36
2023-05-30T11:53:06.131+0500    INFO    JAR files found
2023-05-30T11:53:06.131+0500    INFO    Java DB Repository: ghcr.io/aquasecurity/trivy-java-db:1
2023-05-30T11:53:06.131+0500    INFO    Downloading the Java DB...
89.90 MiB / 431.27 MiB [-------->______________________________] 20.85% 4.66 MiB p/s ETA 1m13s2023-05-30T11:53:29.287+0500    DEBUG   Missing diff ID in cache: sha256:f6892e40e872683c11b7721de2c26a0ca6b69419881305bc4d5c1247f8957f83
101.73 MiB / 431.27 MiB [-------->_____________________________] 23.59% 4.26 MiB p/s ETA 1m17s2023-05-30T11:53:32.683+0500    DEBUG   Missing diff ID in cache: sha256:18b7d2be6ff8e6d6a37001abe02e18fb7867a1c72af29a5ee2a87b6b9f2ad0a4
116.46 MiB / 431.27 MiB [---------->___________________________] 27.00% 3.50 MiB p/s ETA 1m29s2023-05-30T11:53:38.315+0500    DEBUG   Missing diff ID in cache: sha256:76c9c0aa0e3a8fe134edc92d589a0da6f4f980c0a17d9686f2d6fa10ad6d08e0
166.81 MiB / 431.27 MiB [--------------->_______________________] 38.68% 4.31 MiB p/s ETA 1m1s2023-05-30T11:53:49.710+0500    DEBUG   Missing diff ID in cache: sha256:ad53b34a8169ceec2dccefc938feebc5a5d71270fecf36bd9b65e9284cae17d9
232.59 MiB / 431.27 MiB [--------------------->__________________] 53.93% 3.77 MiB p/s ETA 52s2023-05-30T11:54:07.258+0500    DEBUG   Missing diff ID in cache: sha256:63d56b7f244547baf07a13916396016f3814f84a7e5b386fa2e4b517c496c3d8
241.93 MiB / 431.27 MiB [---------------------->_________________] 56.10% 3.94 MiB p/s ETA 48s2023-05-30T11:54:09.390+0500    DEBUG   Missing diff ID in cache: sha256:e98da9ddbf93c1f530c478461e3c88ba55883f55eb934aebab1cb64aaedfc14b
267.46 MiB / 431.27 MiB [------------------------>_______________] 62.02% 4.26 MiB p/s ETA 38s2023-05-30T11:54:14.684+0500    DEBUG   Missing diff ID in cache: sha256:a3760fd4dd13fd885ed40ebb6f285a84b0054e76a412fcec859e52aba46f088c
268.45 MiB / 431.27 MiB [------------------------>_______________] 62.25% 4.27 MiB p/s ETA 38s2023-05-30T11:54:14.748+0500    DEBUG   Missing diff ID in cache: sha256:0d926ad372d8d3d9cd8331b9a5c3e973d36dab0e5ed6ab6a07a74bc176890822
269.49 MiB / 431.27 MiB [------------------------>_______________] 62.49% 4.27 MiB p/s ETA 37s2023-05-30T11:54:15.194+0500    DEBUG   Missing diff ID in cache: sha256:bd8026bffb0c1411fe0de4b3af0f6030485304782f5a8a4bb89c24d8b3f78a4f
275.20 MiB / 431.27 MiB [------------------------->______________] 63.81% 4.46 MiB p/s ETA 34s2023-05-30T11:54:15.920+0500    DEBUG   Missing diff ID in cache: sha256:ce3c56079f0153f4ae904877730a083902ce94ec760aa1229add48ee220972bd
307.07 MiB / 431.27 MiB [---------------------------->___________] 71.20% 4.12 MiB p/s ETA 30s2023-05-30T11:54:24.317+0500    DEBUG   Missing diff ID in cache: sha256:07c80edd519b49c3beaeb086fcd9e921c14710a1ebd9255ca63d9f8ac54d7987
314.98 MiB / 431.27 MiB [----------------------------->__________] 73.03% 4.16 MiB p/s ETA 27s2023-05-30T11:54:26.126+0500    DEBUG   Missing diff ID in cache: sha256:decf49ffb9a5a45e749e8539c402cd6fa0e250812b0225c6be697bfc2297b745
411.32 MiB / 431.27 MiB [--------------------------------------->_] 95.37% 3.08 MiB p/s ETA 6s2023-05-30T11:54:56.071+0500    DEBUG   Missing diff ID in cache: sha256:01a9070dadbe42ae9f67144411b4043814311798393cd544dddcf77b7f6fedca
414.18 MiB / 431.27 MiB [--------------------------------------->_] 96.04% 3.11 MiB p/s ETA 5s2023-05-30T11:54:57.174+0500    DEBUG   Analysis error: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/browser_field/package.json: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/browser_field/package.json: unable to parse package.json
2023-05-30T11:54:57.175+0500    DEBUG   Analysis error: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/dot_main/package.json: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/dot_main/package.json: unable to parse package.json
2023-05-30T11:54:57.175+0500    DEBUG   Analysis error: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/dot_slash_main/package.json: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/dot_slash_main/package.json: unable to parse package.json
2023-05-30T11:54:57.176+0500    DEBUG   Analysis error: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/incorrect_main/package.json: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/incorrect_main/package.json: unable to parse package.json
2023-05-30T11:54:57.176+0500    DEBUG   Analysis error: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/invalid_main/package.json: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/invalid_main/package.json: unable to parse package.json
414.37 MiB / 431.27 MiB [--------------------------------------->_] 96.08% 3.02 MiB p/s ETA 5s2023-05-30T11:54:57.212+0500    DEBUG   Analysis error: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/baz/package.json: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/resolver/baz/package.json: unable to parse package.json
2023-05-30T11:54:57.215+0500    DEBUG   Analysis error: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/module_dir/zmodules/bbb/package.json: failed to parse usr/local/lib/node_modules/npm/node_modules/normalize-package-data/node_modules/resolve/test/module_dir/zmodules/bbb/package.json: unable to parse package.json
419.76 MiB / 431.27 MiB [--------------------------------------->_] 97.33% 2.50 MiB p/s ETA 4s2023-05-30T11:55:01.171+0500    DEBUG   Missing diff ID in cache: sha256:c3df9bc37e5f4f9baf4c6316207423a7398ff0348da3a09e7aea1c4e754947d4
431.27 MiB / 431.27 MiB [--------------------------------------->] 100.00% 1.67 MiB p/s ETA 0s2023-05-30T11:55:10.703+0500    DEBUG   Missing diff ID in cache: sha256:3773d4cfb9f7f503e9817535c091aa8b56eb7ce0b7984ecb9cce266386bb57ab
431.27 MiB / 431.27 MiB [--------------------------------------->] 100.00% 1.67 MiB p/s ETA 0s2023-05-30T11:55:11.321+0500    DEBUG   Missing diff ID in cache: sha256:829912f9035b64f9faa1bb6d8eddba9999c67aef65fcd43d91eac240d8be58ad
431.27 MiB / 431.27 MiB [--------------------------------------->] 100.00% 1.46 MiB p/s ETA 0s2023-05-30T11:55:11.618+0500    DEBUG   Missing diff ID in cache: sha256:5f19522722a08208e11d02bd425d51b648fac36302b787d976a981983537e89d
431.27 MiB / 431.27 MiB [--------------------------------------->] 100.00% 1.37 MiB p/s ETA 0s2023-05-30T11:55:12.569+0500    DEBUG   Missing diff ID in cache: sha256:1fa8288bc22d68be9b0dc369717d6f9b71c04e45b72ebaa994bfd25f9c891e8e
431.27 MiB / 431.27 MiB [--------------------------------------->] 100.00% 1.28 MiB p/s ETA 0s2023-05-30T11:55:12.920+0500    DEBUG   Missing diff ID in cache: sha256:e1ff1924489b869bbd048ceadf9d5dba5a278c2e7a8eb70e59463192fbc36ac2
431.27 MiB / 431.27 MiB [--------------------------------------->] 100.00% 1.20 MiB p/s ETA 0s2023-05-30T11:55:13.627+0500    DEBUG   Missing diff ID in cache: sha256:709071f4238aca396ef260cbef6ff2f4c5dacb612bd163fd21cd1b6362e4d0d5
431.27 MiB / 431.27 MiB [--------------------------------------->] 100.00% 1.12 MiB p/s ETA 0s2023-05-30T11:55:14.009+0500    DEBUG   Missing diff ID in cache: sha256:c4ac309bb690dddf3d9eff99a50f1082be338bcb9af05dadb8bf55a75ebcb3fa
431.27 MiB / 431.27 MiB [-----------------------------------------] 100.00% 2.59 MiB p/s 2m47s
2023-05-30T11:55:56.529+0500    INFO    The Java DB is cached for 3 days. If you want to update the database more frequently, the '--reset' flag clears the DB cache.
2023-05-30T11:55:56.784+0500    INFO    Analyzing JAR files takes a while...
2023-05-30T11:55:56.784+0500    DEBUG   Parsing Java artifacts...       {"file": "usr/lib/oracle/12.1/client64/lib/ojdbc6.jar"}
2023-05-30T11:55:56.812+0500    DEBUG   Parsing Java artifacts...       {"file": "usr/lib/oracle/12.1/client64/lib/ojdbc7.jar"}
2023-05-30T11:55:56.828+0500    DEBUG   Parsing Java artifacts...       {"file": "usr/lib/oracle/12.1/client64/lib/xstreams.jar"}
2023-05-30T11:55:56.829+0500    DEBUG   No such POM in the central repositories {"file": "xstreams.jar"}
2023-05-30T11:55:56.904+0500    DEBUG   No such POM in the central repositories {"file": "ojdbc6.jar"}
2023-05-30T11:55:56.907+0500    DEBUG   No such POM in the central repositories {"file": "ojdbc7.jar"}
2023-05-30T11:56:26.049+0500    DEBUG   Analysis error: failed to parse home/node-v8.11.3/test/fixtures/module-require/not-found/node_modules/module1/package.json: failed to parse home/node-v8.11.3/test/fixtures/module-require/not-found/node_modules/module1/package.json: unable to parse package.json
2023-05-30T11:56:26.068+0500    DEBUG   Analysis error: failed to parse home/node-v8.11.3/test/fixtures/packages/invalid/package.json: failed to parse home/node-v8.11.3/test/fixtures/packages/invalid/package.json: JSON decode error: invalid character ',' looking for beginning of object key string
2023-05-30T11:56:26.079+0500    DEBUG   Analysis error: failed to parse home/node-v8.11.3/test/fixtures/require-bin/package.json: failed to parse home/node-v8.11.3/test/fixtures/require-bin/package.json: unable to parse package.json
2023-05-30T11:56:26.079+0500    DEBUG   Analysis error: failed to parse home/node-v8.11.3/test/fixtures/packages/index/package.json: failed to parse home/node-v8.11.3/test/fixtures/packages/index/package.json: unable to parse package.json
2023-05-30T11:56:49.229+0500    DEBUG   No secrets found in container image config
2023-05-30T11:56:49.331+0500    INFO    Detected OS: centos
2023-05-30T11:56:49.331+0500    INFO    Detecting RHEL/CentOS vulnerabilities...
2023-05-30T11:56:49.331+0500    DEBUG   Red Hat: os version: 7
2023-05-30T11:56:49.331+0500    DEBUG   Red Hat: the number of packages: 224
2023-05-30T11:56:50.924+0500    INFO    Number of language-specific files: 2
2023-05-30T11:56:50.924+0500    INFO    Detecting python-pkg vulnerabilities...
2023-05-30T11:56:50.924+0500    DEBUG   Detecting library vulnerabilities, type: python-pkg, path:
2023-05-30T11:56:50.997+0500    INFO    Detecting node-pkg vulnerabilities...
2023-05-30T11:56:50.997+0500    DEBUG   Detecting library vulnerabilities, type: node-pkg, path:
2023-05-30T11:56:51.149+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/npm/html/doc/misc/npm-config.html
2023-05-30T11:56:51.149+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/demoCA/private/cakey.pem
2023-05-30T11:56:51.149+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/dsa-pca.pem
2023-05-30T11:56:51.149+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/certs/demo/ca-cert.pem
2023-05-30T11:56:51.149+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/ms/keyCA.ss
2023-05-30T11:56:51.149+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/client.pem
2023-05-30T11:56:51.149+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/s1024key.pem
2023-05-30T11:56:51.149+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/server2.pem
2023-05-30T11:56:51.149+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/certs/demo/pca-cert.pem
2023-05-30T11:56:51.150+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/dsa-ca.pem
2023-05-30T11:56:51.150+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/pca-key.pem
2023-05-30T11:56:51.150+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/ms/keyU.ss
2023-05-30T11:56:51.150+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/ca-key.pem
2023-05-30T11:56:51.150+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/rsa8192.pem
2023-05-30T11:56:51.150+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/s512-key.pem
2023-05-30T11:56:51.150+0500    DEBUG   Secret file: /home/node-v8.11.3/deps/openssl/openssl/apps/server.pem
2023-05-30T11:56:53.095+0500    WARN    Error while getting vulnerability details: failed to get the vulnerability "CVE-2022-23816": no vulnerability details for CVE-2022-23816

Operating System

Operating System: CentOS Stream 8
CPE OS Name: cpe:/o:centos:centos:8
Kernel: Linux 4.18.0-489.el8.x86_64
Architecture: x86-64

Version

[root@master-node ~]# trivy --version
Version: 0.41.0
Vulnerability DB:
  Version: 2
  UpdatedAt: 2023-05-30 06:09:36.570726802 +0000 UTC
  NextUpdate: 2023-05-30 12:09:36.570726402 +0000 UTC
  DownloadedAt: 2023-05-30 06:47:31.715466791 +0000 UTC
Java DB:
  Version: 1
  UpdatedAt: 2023-05-30 01:02:47.138577833 +0000 UTC
  NextUpdate: 2023-06-02 01:02:47.138577333 +0000 UTC
  DownloadedAt: 2023-05-30 06:55:56.486574561 +0000 UTC
[root@master-node ~]#

Checklist

Originally posted by @salmankhwaja in #4481
@knqyf263 knqyf263 added the triage/duplicate Indicates an issue is a duplicate of other open issue. label May 30, 2023
@knqyf263
Copy link
Collaborator

#2623

@salmankhwaja
Copy link
Author

@knqyf263 , still the report isn't being generated. Where should I update the issues ?
You have closed both the issues... ? At least one has to be opened to update right... now the error is changed.

@knqyf263
Copy link
Collaborator

#2623 is open

@salmankhwaja
Copy link
Author

hi, what's the update on this issue. This issue is still lurking in my system. Please tell me what do to ?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
triage/duplicate Indicates an issue is a duplicate of other open issue.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@salmankhwaja @knqyf263