I am using greenbone security assistant in a docker container “https://github.com/mikesplain/openvas-docker”
my problem is when i look through the vulerability reports there are a lot of them which relate to not running linux kernels. we run a lot of debian machines and have never cleaned up the old kernels (they are not running anyway).
Is there a possibility to exclude not running kernels ?
TIA
Hi,
if you want to accept the risk of having vulnerable but not running kernel versions installed you can work with Overrides and False Positives.
In many cases a old Kernel can be loaded within a fail-over scenario or downgrade, you should remove the vulnerable kernel from the systems anyway.
An alternative way to accept the risk of having vulnerable but not running kernel versions on the system is now available: