Lucene search
OracleLinuxELSA-2022-20240HistoryAug 22, 2022 - 12:00 a.m.
podman security update
2022-08-2200:00:00
linux.oracle.com
11
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
[1.6.4-36.0.1]
- Reduce unnecessary writable mounts in NaiveDiffDriver [Orabug: 31025483]
- handle redirect from the docker registry v2 [Orabug: 29874238] ([email protected])
- remove changes in NaiveDiffDriver
[1.6.4-36] - update to the latest content of https://github.com/containers/podman/tree/v1.6.4-rhel
(https://github.com/containers/podman/commit/7667df8)
[1.6.4-35] - update to the latest content of https://github.com/containers/podman/tree/v1.6.4-rhel
(https://github.com/containers/podman/commit/e330751)
[1.6.4-34] - fix RHEL7 regressions - thanks to Valentin Rothberg
[1.6.4-33] - update to the latest content of https://github.com/containers/podman/tree/v1.6.4-rhel
(https://github.com/containers/podman/commit/68af661)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | podman | < 1.6.4-36.0.1.el7_9 | podman-1.6.4-36.0.1.el7_9.src.rpm |
| oracle linux | 7 | aarch64 | podman | < 1.6.4-36.0.1.el7_9 | podman-1.6.4-36.0.1.el7_9.aarch64.rpm |
| oracle linux | 7 | noarch | podman-docker | < 1.6.4-36.0.1.el7_9 | podman-docker-1.6.4-36.0.1.el7_9.noarch.rpm |
| oracle linux | 7 | src | podman | < 1.6.4-36.0.1.el7_9 | podman-1.6.4-36.0.1.el7_9.src.rpm |
| oracle linux | 7 | x86_64 | podman | < 1.6.4-36.0.1.el7_9 | podman-1.6.4-36.0.1.el7_9.x86_64.rpm |
| oracle linux | 7 | noarch | podman-docker | < 1.6.4-36.0.1.el7_9 | podman-docker-1.6.4-36.0.1.el7_9.noarch.rpm |
Related
redhat
redhat
(RHSA-2022:6119) Moderate: podman security and bug fix update
2022-08-22 08:12:17
nessus
nessus
RHEL 7 : podman (RHSA-2022:6119)
2022-08-22 00:00:00
Oracle Linux 7 : podman (ELSA-2022-20240)
2022-08-22 00:00:00
veracode
veracode
Use-After-Free
2022-09-05 21:42:39
Information Disclosure
2022-09-05 21:42:42
prion
prion
Design/Logic Flaw
2022-09-01 21:15:00
Design/Logic Flaw
2022-09-01 21:15:00
cve
cve
CVE-2022-2738
2022-09-01 21:15:00
CVE-2022-2739
2022-09-01 21:15:00
redhatcve
redhatcve
CVE-2022-2738
2022-08-19 08:38:34
CVE-2022-2739
2022-08-19 08:38:34
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Related for ELSA-2022-20240