docker
/
docs
mirror of https://github.com/docker/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #13983 from usha-mandya/hvs-note-patch 

Update note on Docker Hub scans
This commit is contained in:
Usha Mandya 2021-12-15 14:38:28 +00:00 committed by GitHub
parent 687bdaffaa 6263dcac40
commit ed7dcbb98e
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
docker-hub/vulnerability-scanning.md
View File

@ -24,11 +24,11 @@ When you push an image to Docker Hub after enabling vulnerability scanning, Dock
> **Log4j 2 CVE-2021-44228** > **Log4j 2 CVE-2021-44228**
> >
> Versions of `docker scan` earlier than `v0.11.0` are not able to detect [Log4j > Docker Hub security scans triggered after **1700 UTC 13 December 2021** are
2 CVE-2021-44228](https://nvd.nist.gov/vuln/detail/CVE-2021-44228){: > now correctly identifying the Log4j2 CVE. Scans before this date **do not**
target="_blank" rel="noopener" class="_"}. You must update your Docker > currently reflect the status of this vulnerability. Therefore, we recommend
> installation to the latest version to fix this issue. For more > that you trigger scans by pushing the image to Docker Hub to view the status
> information, see [Scan images for Log4j 2 CVE](../../engine/scan#scan-images-for-log4j-2-cve). > of Log4j2 CVE in the vulnerability report.
{: .important} {: .important}
Hub Vulnerability scanning allows repository owners and administrators of a Hub Vulnerability scanning allows repository owners and administrators of a