Download
| Alert*
|
oval:org.secpod.oval:def:2600467
The runC tool is a lightweight, portable implementation of the Open Container Format that provides container runtime. oval:org.secpod.oval:def:509098 The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fix: golang: archive/tar: unbounded memory consumption when reading headers golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters golang: net ... oval:org.secpod.oval:def:3301959 Security update for go1.21 oval:org.secpod.oval:def:2600464 The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. oval:org.secpod.oval:def:2600465 The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files. oval:org.secpod.oval:def:2600460 The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Docke ... oval:org.secpod.oval:def:508027 The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files. Security Fix: golang: crypto/tls: slow verification of certificate chains containing large RSA keys golang: html/template: improper handling of HTM ... oval:org.secpod.oval:def:2600461 The Container Network Interface project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated resources ... oval:org.secpod.oval:def:1507197 [2:4.6.1-7.0.1] - Rebuild for following CVEs: CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - Resolves: #2228743 - Resolves: #2237773 - Resolves: #2237776 - Resolves: #2237777 - Resolves: #2237778 [2:4.6.1-6.0.1] - Drop nmap-ncat requirement and skip ignore-socket test c ... oval:org.secpod.oval:def:2108297 Oracle Solaris 11 - ( CVE-2023-39322 ) oval:org.secpod.oval:def:508025 The Container Network Interface project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated resources ... oval:org.secpod.oval:def:1507213 [1.31.3-2.0.1] - Rebuild for CVEs: CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 oval:org.secpod.oval:def:1507204 [1:1.3.0-6] - rebuild for following CVEs: CVE-2023-29409 CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 - Resolves: #2228743 - Resolves: #2237773 - Resolves: #2237776 - Resolves: #2237777 - Resolves: #2237778 [1:1.3.0-5] - fix path to dhcp service - Resolves: #RHEL-3140 oval:org.secpod.oval:def:1507200 [2:1.13.3-3] - Rebuild with golang 1.20.10 - Related: Jira:RHEL-2786 [2:1.13.3-2] - Rebuild with golang 1.21.3 - Related: Jira:RHEL-2786 oval:org.secpod.oval:def:1507256 buildah [1:1.24.6-7] - rebuild for CVE-2023-29406 - Related: #2176055 cockpit-podman [46-1] - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/46 - Related: #2061390 conmon [2:2.1.4-2] - update to https://github.com/containers/conmon/releases/tag/v2.1.4 - Related: #2176055 co ... oval:org.secpod.oval:def:2501305 The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. oval:org.secpod.oval:def:1507308 [4:1.1.12-1] - update to https://github.com/opencontainers/runc/releases/tag/v1.1.12 - Related: RHEL-2112 [4:1.1.11-1] - update to https://github.com/opencontainers/runc/releases/tag/v1.1.11 - Related: RHEL-2112 [4:1.1.10-3] - Rebuild for CVEs: CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - Related: ... oval:org.secpod.oval:def:1507209 [4:1.1.9-2] - Rebuild for CVEs: CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - Resolves: #2228743 - Resolves: #2237777 - Resolves: #2237778 oval:org.secpod.oval:def:509393 The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fix: urllib3: urllib3 does not remove the authorization HTTP header when following a cross-origin redirect golang: math/big.Rat: may cause a panic or an unrecoverable fatal err ... oval:org.secpod.oval:def:3301762 Security update for go1.21-openssl |
