Debian Stretch AMI on AWS Marketplace + Meltdown
I am trying to publish a new AMI at the AWS Marketplace . My AMI is
based on the Debian Stretch ami-628ad918 , which includes kernel
updates for DSA 4078, addressing the Meltdown attack.
However, the AWS scan tool rejects the AMI due to the following issue:
(quote) "Vulnerabilities detected - The following vulnerabilities were
detected and must be addressed: CVE-2017-5754 ."
The AMI I submitted has all available Debian updates installed and
reading the description of CVE-2017-5754, this is clearly the Meltdown
Have I missed anything? Why does the AWS scan tool stumble across this
vulnerability and what can I do to address this issue?