Download
| Alert*
oval:org.secpod.oval:def:503630
The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: * Create a working container, either from scratch or using an image as a starting point. * Create an image, either from a working container or using the instructions in a D ... oval:org.secpod.oval:def:503634 The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files. Security Fix: * proglottis/gpgme: Use-after-free in GPGME bindings during container image pull For more details about the security issue, including ... oval:org.secpod.oval:def:503746 The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fix: * buildah: Crafted input tar file may lead to local file overwrite during image build process ... oval:org.secpod.oval:def:503632 Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that runs virtually anywhere. Security Fix: * runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc * proglottis/gpgme: Use-after-free ... oval:org.secpod.oval:def:507121 The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fix: * podman: Security regression of CVE-2020-8945 due to source code management issue * podman: ... oval:org.secpod.oval:def:118526 OpenShift Origin is a distribution of Kubernetes optimized for enterprise application development and deployment. OpenShift Origin adds developer and operational centric tools on top of Kubernetes to enable rapid application development, easy deployment and scaling, and long-term lifecycle maintenan ... oval:org.secpod.oval:def:117824 Command line utility to inspect images and repositories directly on Docker registries without the need to pull them oval:org.secpod.oval:def:117846 Command line utility to inspect images and repositories directly on Docker registries without the need to pull them oval:org.secpod.oval:def:117900 podman is a fully featured container engine that is a simple daemonless tool. podman provides a Docker-CLI comparable command line that eases the transition from other container engines and allows the management of pods, containers and images. Simply put: alias docker=podman. Most podman commands c ... |