Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistRedhatCVELIST:CVE-2022-2738
HistorySep 01, 2022 - 8:50 p.m.

CVE-2022-2738

2022-09-0120:50:57
CWE-416
redhat
www.cve.org
1
podman
red hat enterprise linux
fix missing
cve-2020-8945
code execution
gpg signature verification

8.1 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.1%

JSON

The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-8945, which was previously fixed via RHSA-2020:2117. This issue could possibly be used to crash or cause potential code execution in Go applications that use the Go GPGME wrapper library, under certain conditions, during GPG signature verification.

CNA Affected

[
  {
    "product": "podman",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "podman 1.6.4-32.el7_9"
      }
    ]
  }
]

Related

nvd 2
redhatcve 2
cve 2
prion 2
redhat 20
nessus 23
fedora 4
veracode 2
cvelist 1
openvas 5
debiancve 1
osv 5
ubuntucve 1
github 1
oraclelinux 1
nvd
nvd
CVE-2022-2738
2022-09-01 21:15:09
CVE-2020-8945
2020-02-12 18:15:10
redhatcve
redhatcve
CVE-2022-2738
2022-08-19 08:38:34
CVE-2020-8945
2022-05-14 11:39:44
cve
cve
CVE-2022-2738
2022-09-01 21:15:09
CVE-2020-8945
2020-02-12 18:15:10
prion
prion
Design/Logic Flaw
2022-09-01 21:15:00
Design/Logic Flaw
2020-02-12 18:15:00
redhat
redhat
(RHSA-2022:6119) Moderate: podman security and bug fix update
2022-08-22 08:12:17
(RHSA-2020:0697) Moderate: OpenShift Container Platform 4.1.38 skopeo security update
2020-03-12 21:07:02
(RHSA-2020:0689) Moderate: OpenShift Container Platform 4.2.22 skopeo security update
2020-03-10 12:09:47
nessus
nessus
RHEL 7 : podman (RHSA-2022:6119)
2022-08-22 00:00:00
Oracle Linux 7 : podman (ELSA-2022-20240)
2022-08-22 00:00:00
Fedora 30 : 1:skopeo (2020-2a0aac3502)
2020-02-24 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: skopeo-0.1.41-1.fc30
2020-02-24 01:13:25
[SECURITY] Fedora 31 Update: skopeo-0.1.41-1.fc31
2020-02-23 01:23:31
[SECURITY] Fedora 30 Update: podman-1.8.0-4.fc30
2020-03-09 20:55:26
veracode
veracode
Use After Free (UAF)
2020-02-13 05:13:18
Use-After-Free
2022-09-05 21:42:39
cvelist
cvelist
CVE-2020-8945
2020-02-12 17:20:43
openvas
openvas
Fedora: Security Advisory for skopeo (FEDORA-2020-f317e13ecf)
2020-02-23 00:00:00
Fedora: Security Advisory for podman (FEDORA-2020-ccc3e64ea5)
2020-03-10 00:00:00
Huawei EulerOS: Security Advisory for iSulad-kit (EulerOS-SA-2020-1290)
2020-03-23 00:00:00
debiancve
debiancve
CVE-2020-8945
2020-02-12 18:15:10
osv
osv
GO-2020-0002
2021-04-14 20:04:52
CVE-2020-8945
2020-02-12 18:15:10
GPGME Go wrapper contains Use After Free
2021-05-18 15:29:42
ubuntucve
ubuntucve
CVE-2020-8945
2020-02-12 00:00:00
github
github
GPGME Go wrapper contains Use After Free
2021-05-18 15:29:42
oraclelinux
oraclelinux
podman security update
2022-08-22 00:00:00

8.1 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.1%

JSON
Related for CVELIST:CVE-2022-2738
nvd2redhatcve2cve2prion2redhat20nessus23fedora4veracode2cvelist1openvas5debiancve1osv5ubuntucve1github1oraclelinux1