Provider for Plainbox - PC Sanity

Overview
Code
Bugs
Blueprints
Translations
Answers

Bug #1916448
Comment #0

Comment 0 for bug 1916448

Revision history for this message

Yuan-Chen Cheng (ycheng-twn) wrote on 2021-02-22: cvescan always failed in focal because jq security is not fixed

Per today, cvescan complain about jq:
====
/usr/bin/jq
You have some packages that need an update for CVE.
====
However, we don't have updated jq in the security channel.

$ apt-cache policy jq
jq:
  Installed: 1.6-1ubuntu0.20.04.1
  Candidate: 1.6-1ubuntu0.20.04.1
  Version table:
*** 1.6-1ubuntu0.20.04.1 500
        500 http://archive.ubuntu.com/ubuntu focal-updates/universe amd64 Packages
        100 /var/lib/dpkg/status
     1.6-1 500
        500 http://archive.ubuntu.com/ubuntu focal/universe amd64 Packages