Added CVE-2023-45853 to trivyignore

scaleoutsystems · Jan 21, 2025 · e4a3f06 · e4a3f06
1 parent 8eb0263
commit e4a3f06
Showing 1 changed file with 9 additions and 0 deletions.
diff --git a/.trivyignore b/.trivyignore
@@ -0,0 +1,9 @@
+# zlib version 1:1.3.dfsg+really1.3.1-1+b1 is installed from Debian Trixie repository,
+# but Trivy assumes an older version of zlib because base image uses Debian Bookworm and
+# therefore raises the vulnerability alert CVE-2023-45853.
+# 
+# See this discussion about a similar issue: https://github.com/aquasecurity/trivy/discussions/6059
+# 
+# Ignoring this vulnerability since it is fixed.
+# 
+CVE-2023-45853