RHSA-2024:0121 -- Redhat buildah, cockpit-podman, conmon, container-selinux, containernetworking-plugins, containers-common, criu, crun, fuse-overlayfs, libslirp, oci-seccomp-bpf-hook, podman, python-podman, runc, skopeo, slirp4netns, toolbox, udica, python3-podman, aardvark-dns, crit, netavark, python3-criuID: oval:org.secpod.oval:def:509098 | Date: (C)2024-03-12 (M)2024-05-09 |
Class: PATCH | Family: unix |
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fix: golang: archive/tar: unbounded memory consumption when reading headers golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters golang: net/ http: handle server errors after sending GOAWAY golang: regexp/syntax: limit memory used by parsing regexps golang: crypto/tls: slow verification of certificate chains containing large RSA keys golang: html/template: improper handling of HTML-like comments within script contexts golang: html/template: improper handling of special tags within script contexts golang: crypto/tls: panic when processing post-handshake message on QUIC connections golang: crypto/tls: lack of a limit on buffered post-handshake For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.
Platform: |
Red Hat Enterprise Linux 8 |
Product: |
buildah |
cockpit-podman |
conmon |
container-selinux |
containernetworking-plugins |
containers-common |
criu |
crun |
fuse-overlayfs |
libslirp |
oci-seccomp-bpf-hook |
podman |
python-podman |
runc |
skopeo |
slirp4netns |
toolbox |
udica |
python3-podman |
aardvark-dns |
crit |
netavark |
python3-criu |