logo
DATABASE RESOURCES PRICING ABOUT US

Oracle Linux 8 : container-tools:3.0 (ELSA-2022-2143)

Description

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-2143 advisory. - A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top' command. This action gives the attacker access to the host filesystem, leading to information disclosure or denial of service. (CVE-2022-1227) Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.


Related