Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2022:7954
HistoryNov 15, 2022 - 6:12 a.m.

(RHSA-2022:7954) Moderate: podman security and bug fix update

2022-11-1506:12:00
access.redhat.com
14

0.005 Low

EPSS

Percentile

76.8%

JSON

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.

Security Fix(es):

  • golang.org/x/text: Panic in language.ParseAcceptLanguage while parsing -u- extension (CVE-2020-28851)

  • golang.org/x/text: Panic in language.ParseAcceptLanguage while processing bcp47 tag (CVE-2020-28852)

  • podman: podman machine spawns gvproxy with port bound to all IPs (CVE-2021-4024)

  • podman: Remote traffic to rootless containers is seen as orginating from localhost (CVE-2021-20199)

  • containers/storage: DoS via malicious image (CVE-2021-20291)

  • golang: net/http/httputil: ReverseProxy forwards connection headers if first one is empty (CVE-2021-33197)

  • golang: crypto/tls: certificate of wrong type is causing TLS client to panic (CVE-2021-34558)

  • golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.1 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat9ppc64lepodman-gvproxy-debuginfo< 4.2.0-3.el9podman-gvproxy-debuginfo-4.2.0-3.el9.ppc64le.rpm
RedHat9aarch64podman-plugins< 4.2.0-3.el9podman-plugins-4.2.0-3.el9.aarch64.rpm
RedHat9ppc64lepodman-plugins< 4.2.0-3.el9podman-plugins-4.2.0-3.el9.ppc64le.rpm
RedHat9x86_64podman-gvproxy< 4.2.0-3.el9podman-gvproxy-4.2.0-3.el9.x86_64.rpm
RedHat9x86_64podman< 4.2.0-3.el9podman-4.2.0-3.el9.x86_64.rpm
RedHat9noarchpodman-docker< 4.2.0-3.el9podman-docker-4.2.0-3.el9.noarch.rpm
RedHat9ppc64lepodman-debuginfo< 4.2.0-3.el9podman-debuginfo-4.2.0-3.el9.ppc64le.rpm
RedHat9aarch64podman-tests< 4.2.0-3.el9podman-tests-4.2.0-3.el9.aarch64.rpm
RedHat9ppc64lepodman-remote-debuginfo< 4.2.0-3.el9podman-remote-debuginfo-4.2.0-3.el9.ppc64le.rpm
RedHat9ppc64lepodman-remote< 4.2.0-3.el9podman-remote-4.2.0-3.el9.ppc64le.rpm
Rows per page:
1-10 of 451

Related

nessus 30
oraclelinux 3
almalinux 3
osv 20
ibm 12
altlinux 3
amazon 1
suse 5
openvas 36
redhat 8
prion 6
cvelist 6
veracode 5
cve 6
debiancve 6
ubuntu 1
redhatcve 6
fedora 21
ubuntucve 5
alpinelinux 3
github 2
threatpost 1
rocky 2
cbl_mariner 2
cnvd 2
githubexploit 1
freebsd 1
archlinux 1
mageia 1
nessus
nessus
RHEL 9 : podman (RHSA-2022:7954)
2022-11-16 00:00:00
AlmaLinux 9 : podman (ALSA-2022:7954)
2022-11-19 00:00:00
Oracle Linux 9 : podman (ELSA-2022-7954)
2022-11-22 00:00:00
oraclelinux
oraclelinux
podman security and bug fix update
2022-11-22 00:00:00
buildah security and bug fix update
2022-11-22 00:00:00
grafana security, bug fix, and enhancement update
2021-11-16 00:00:00
almalinux
almalinux
Moderate: podman security and bug fix update
2022-11-15 00:00:00
Moderate: buildah security and bug fix update
2022-11-15 00:00:00
Moderate: grafana security, bug fix, and enhancement update
2021-11-09 08:46:47
osv
osv
Moderate: podman security and bug fix update
2022-11-15 00:00:00
Moderate: buildah security and bug fix update
2022-11-15 00:00:00
golang-golang-x-text, golang-x-text vulnerabilities
2023-02-16 09:20:08
ibm
ibm
Security Bulletin: IBM Cloud Pak for Integration is vulnerable to Go vulnerabilities (CVE-2020-28851 and CVE-2020-28852)
2021-03-23 15:48:47
Security Bulletin: IBM CICS TX Advanced is vulnerable to multiple vulnerabilities in Golang Go.
2023-02-14 21:04:36
Security Bulletin: IBM CICS TX Standard is vulnerable to multiple vulnerabilities in Golang Go.
2023-02-14 21:14:53
altlinux
altlinux
Security fix for the ALT Linux 10 package podman version 3.1.2-alt1
2021-04-22 00:00:00
Security fix for the ALT Linux 10 package golang version 1.16.6-alt1
2021-07-13 00:00:00
Security fix for the ALT Linux 9 package golang version 1.15.14-alt1
2021-07-13 00:00:00
amazon
amazon
Medium: golang
2021-09-02 22:54:00
suse
suse
Security update for conmon, libcontainers-common, libseccomp, podman (moderate)
2022-03-04 00:00:00
Security update for go1.16 (important)
2021-07-22 00:00:00
Security update for go1.15 (moderate)
2021-07-23 00:00:00
openvas
openvas
openSUSE: Security Advisory for conmon, (openSUSE-SU-2022:23018-1)
2022-03-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:23018-1)
2022-03-05 00:00:00
Ubuntu: Security Advisory (USN-5873-1)
2023-02-17 00:00:00
redhat
redhat
(RHSA-2022:8008) Moderate: buildah security and bug fix update
2022-11-15 06:13:14
(RHSA-2021:3009) Moderate: OpenShift Container Platform 4.6.42 security update
2021-08-12 00:25:04
(RHSA-2022:1329) Moderate: OpenShift Virtualization 4.8.5 RPMs security update
2022-04-12 14:54:57
prion
prion
Design/Logic Flaw
2021-01-02 06:15:00
Authentication flaw
2021-02-02 19:15:00
Out-of-bounds
2021-01-02 06:15:00
cvelist
cvelist
CVE-2020-28851
2021-01-02 05:42:40
CVE-2020-28852
2021-01-02 05:45:53
CVE-2021-20199
2021-02-02 18:12:26
veracode
veracode
Denial Of Service (DoS)
2021-01-11 08:48:05
Denial Of Service (DoS)
2021-01-04 06:11:41
Denial Of Service (DoS)
2021-06-05 21:59:55
cve
cve
CVE-2020-28852
2021-01-02 06:15:00
CVE-2021-20199
2021-02-02 19:15:00
CVE-2021-20291
2021-04-01 18:15:00
debiancve
debiancve
CVE-2020-28852
2021-01-02 06:15:00
CVE-2020-28851
2021-01-02 06:15:00
CVE-2021-20199
2021-02-02 19:15:00
ubuntu
ubuntu
Go Text vulnerabilities
2023-02-16 00:00:00
redhatcve
redhatcve
CVE-2020-28851
2021-01-06 14:55:05
CVE-2021-20199
2021-02-01 11:15:32
CVE-2020-28852
2021-01-06 15:34:38
fedora
fedora
[SECURITY] Fedora 33 Update: containers-common-1-15.fc33
2021-04-24 18:07:08
[SECURITY] Fedora 33 Update: podman-3.1.2-1.fc33
2021-04-24 18:07:09
[SECURITY] Fedora 33 Update: buildah-1.20.1-4.fc33
2021-04-24 18:07:08
ubuntucve
ubuntucve
CVE-2020-28852
2021-01-02 00:00:00
CVE-2021-20199
2021-02-02 00:00:00
CVE-2021-20291
2021-04-01 00:00:00
alpinelinux
alpinelinux
CVE-2021-20199
2021-02-02 19:15:00
CVE-2021-33197
2021-08-02 19:15:00
CVE-2021-34558
2021-07-15 14:15:00
github
github
Podman Origin Validation Error
2021-05-18 21:07:49
Improper Locking in github.com/containers/storage
2021-05-10 19:35:07
threatpost
threatpost
Security Bug Allows Attackers to Brick Kubernetes Clusters
2021-04-14 20:56:27
rocky
rocky
container-tools:3.0 security, bug fix, and enhancement update
2022-02-01 20:06:52
grafana security, bug fix, and enhancement update
2021-11-09 08:46:47
cbl_mariner
cbl_mariner
CVE-2021-20199 affecting package podman for versions less than 4.1.1-1
2022-08-03 21:00:10
CVE-2021-34558 affecting package golang 1.15.13-1
2021-09-09 15:03:05
cnvd
cnvd
Google Golang has an unspecified vulnerability (CNVD-2022-02629)
2021-06-30 00:00:00
Google Golang Trust Management Issue Vulnerability
2021-07-19 00:00:00
githubexploit
githubexploit
Exploit for Improper Certificate Validation in Golang Go
2021-07-13 06:15:21
freebsd
freebsd
go -- crypto/tls: clients can panic when provided a certificate of the wrong type for the negotiated parameters
2021-07-07 00:00:00
archlinux
archlinux
[ASA-202107-42] go: denial of service
2021-07-20 00:00:00
mageia
mageia
Updated skopeo/buildah/podman packages fix security vulnerability
2023-07-07 08:54:45

0.005 Low

EPSS

Percentile

76.8%

JSON
Related for RHSA-2022:7954
nessus30oraclelinux3almalinux3osv20ibm12altlinux3amazon1suse5openvas36redhat8prion6cvelist6veracode5cve6debiancve6ubuntu1redhatcve6fedora21ubuntucve5alpinelinux3github2threatpost1rocky2cbl_mariner2cnvd2githubexploit1freebsd1archlinux1mageia1