RHSA-2024:0748 -- Redhat buildah, cockpit-podman, conmon, container-selinux, containernetworking-plugins, containers-common, criu, crun, fuse-overlayfs, libslirp, oci-seccomp-bpf-hook, podman, python-podman, runc, skopeo, slirp4netns, toolbox, udica, python3-podman, aardvark-dns, crit, netavark, python3-criu| ID: oval:org.secpod.oval:def:509030 | Date: (C)2024-02-28 (M)2024-05-09 |
| Class: PATCH | Family: unix |
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fix: runc: file descriptor leak A Red Hat Security Bulletin which addresses further details about the Leaky Vessels flaw is available in the References section. golang: net/http/internal: Denial of Service via Resource Consumption via HTTP requests golang: crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges. For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.
| Platform: |
| Red Hat Enterprise Linux 8 |
| Product: |
| buildah |
| cockpit-podman |
| conmon |
| container-selinux |
| containernetworking-plugins |
| containers-common |
| criu |
| crun |
| fuse-overlayfs |
| libslirp |
| oci-seccomp-bpf-hook |
| podman |
| python-podman |
| runc |
| skopeo |
| slirp4netns |
| toolbox |
| udica |
| python3-podman |
| aardvark-dns |
| crit |
| netavark |
| python3-criu |
