Clair incorrectly flags Oracle Linux ksplice userspace errata

[jetsaredim]

Clair appears to be flagging Oracle Linux-based container images for errata that are only applicable to ksplice userspace packages. These errata should never be applied to a container since ksplice userspace packages are not supported to be run within a container. As such, these errata should never be flagged when scanning an Oracle Linux-based container.

[floyd673]

hello you welcome how may we help you out

[hdonnay]

hello you welcome how may we help you out

Changing the Oracle updater to omit the offending packages would be the way forward.

[BradLugo]

Changing the Oracle updater to omit the offending packages would be the way forward.

The change submitted in #1511 omits the offending packages; however, I'm a bit concerned this might cause false negatives for bootc images (if one were to build such an image for Oracle Linux). I believe this is a moot point right now since we don't fully support bootc images today, but I felt it was worth noting.