Issue
The TuxCare Radar is reporting some updated and patched servers as vulnerable to otherwise addressed CVEs.
Environment
- TuxCare Radar
- ELS
Solution
The servers are not vulnerable to the CVEs shown as "already fixed" or "released" in our CVE portal. Based on our analysis, it seems to be an issue with the Radar's sourcing and detection code. We're actively investigating the situation at the moment, and will update this article with our findings.
Note that the issue we're referring to concerns released patches. The Radar may still show vulnerabilities if the servers have outdated kernels installed, or if the patches are not yet released or available for a specific CVE.
Cause
We'll provide additional insights regarding the cause after the investigation is concluded.
Comments
0 comments
Article is closed for comments.