Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2024:0564
HistoryJan 30, 2024 - 12:10 p.m.

(RHSA-2024:0564) Moderate: container-tools:3.0 security update

2024-01-3012:10:11
access.redhat.com
14
container-tools podman buildah skopeo runc denial of service apparmor cvss unix symlink cve-2022-21698 cve-2023-28642 references page security update.

8 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.6%

JSON

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

Security Fix(es):

  • prometheus/client_golang: Denial of service using InstrumentHandlerCounter (CVE-2022-21698)

  • runc: AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration (CVE-2023-28642)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHatanyppc64leslirp4netns-debugsource< 1.1.8-1.module+el8.4.0+21078+a96cfbf6slirp4netns-debugsource-1.1.8-1.module+el8.4.0+21078+a96cfbf6.ppc64le.rpm
RedHatanyx86_64containers-common< 1.2.2-8.module+el8.4.0+21078+a96cfbf6containers-common-1.2.2-8.module+el8.4.0+21078+a96cfbf6.x86_64.rpm
RedHatanyppc64lepodman-debugsource< 3.0.1-13.module+el8.4.0+21078+a96cfbf6podman-debugsource-3.0.1-13.module+el8.4.0+21078+a96cfbf6.ppc64le.rpm
RedHatanyppc64lefuse-overlayfs-debuginfo< 1.4.0-2.module+el8.4.0+21078+a96cfbf6fuse-overlayfs-debuginfo-1.4.0-2.module+el8.4.0+21078+a96cfbf6.ppc64le.rpm
RedHatanyppc64leskopeo-tests< 1.2.2-8.module+el8.4.0+21078+a96cfbf6skopeo-tests-1.2.2-8.module+el8.4.0+21078+a96cfbf6.ppc64le.rpm
RedHatanyx86_64containernetworking-plugins-debugsource< 0.9.1-1.module+el8.4.0+21078+a96cfbf6containernetworking-plugins-debugsource-0.9.1-1.module+el8.4.0+21078+a96cfbf6.x86_64.rpm
RedHatanyppc64lecontainernetworking-plugins-debugsource< 0.9.1-1.module+el8.4.0+21078+a96cfbf6containernetworking-plugins-debugsource-0.9.1-1.module+el8.4.0+21078+a96cfbf6.ppc64le.rpm
RedHatanyx86_64runc-debugsource< 1.0.0-77.rc95.module+el8.4.0+21078+a96cfbf6runc-debugsource-1.0.0-77.rc95.module+el8.4.0+21078+a96cfbf6.x86_64.rpm
RedHatanyppc64lepodman< 3.0.1-13.module+el8.4.0+21078+a96cfbf6podman-3.0.1-13.module+el8.4.0+21078+a96cfbf6.ppc64le.rpm
RedHatanynoarchpodman-docker< 3.0.1-13.module+el8.4.0+21078+a96cfbf6podman-docker-3.0.1-13.module+el8.4.0+21078+a96cfbf6.noarch.rpm
Rows per page:
1-10 of 1051

Related

nessus 35
ubuntucve 2
alpinelinux 2
cbl_mariner 17
cgr 2
cve 2
debiancve 2
redhatcve 2
cvelist 2
veracode 2
wolfi 2
prion 2
osv 16
ibm 3
openvas 52
github 2
redos 1
suse 7
fedora 22
redhat 13
mageia 2
oraclelinux 3
altlinux 1
ubuntu 2
rosalinux 1
almalinux 1
photon 1
nessus
nessus
RHEL 8 : container-tools:3.0 (RHSA-2024:0564)
2024-01-30 00:00:00
EulerOS 2.0 SP9 : docker-runc (EulerOS-SA-2023-2581)
2023-08-08 00:00:00
openSUSE 15 Security Update : golang-github-prometheus-alertmanager (SUSE-SU-2022:2139-1)
2023-01-20 00:00:00
ubuntucve
ubuntucve
CVE-2023-28642
2023-03-29 00:00:00
CVE-2022-21698
2022-02-15 00:00:00
alpinelinux
alpinelinux
CVE-2023-28642
2023-03-29 19:15:22
CVE-2022-21698
2022-02-15 16:15:00
cbl_mariner
cbl_mariner
CVE-2023-28642 affecting package moby-runc 1.1.2+azure-4
2023-04-20 19:17:28
CVE-2023-28642 affecting package moby-runc for versions less than 1.1.5-1
2023-05-03 16:08:49
CVE-2022-21698 affecting package prometheus-process-exporter for versions less than 0.7.10-18
2024-02-14 17:05:34
cgr
cgr
CVE-2023-28642 vulnerabilities
2024-05-17 15:41:37
CVE-2022-21698 vulnerabilities
2024-05-17 15:41:37
cve
cve
CVE-2023-28642
2023-03-29 19:15:22
CVE-2022-21698
2022-02-15 16:15:00
debiancve
debiancve
CVE-2023-28642
2023-03-29 19:15:22
CVE-2022-21698
2022-02-15 16:15:00
redhatcve
redhatcve
CVE-2023-28642
2023-03-30 09:22:48
CVE-2022-21698
2022-02-15 17:20:06
cvelist
cvelist
CVE-2023-28642 AppArmor bypass with symlinked /proc in runc
2023-03-29 18:15:48
CVE-2022-21698 Uncontrolled Resource Consumption in promhttp
2022-02-15 00:00:00
veracode
veracode
Symlink Bypass
2023-04-05 13:38:40
Denial Of Service (DoS)
2022-02-16 07:17:26
wolfi
wolfi
CVE-2023-28642 vulnerabilities
2024-05-17 21:08:03
CVE-2022-21698 vulnerabilities
2024-05-17 21:08:03
prion
prion
Design/Logic Flaw
2023-03-29 19:15:00
Design/Logic Flaw
2022-02-15 16:15:00
osv
osv
CVE-2023-28642
2023-03-29 19:15:22
runc AppArmor bypass with symlinked /proc
2023-03-30 20:20:23
runc vulnerabilities
2023-05-18 10:03:59
ibm
ibm
Security Bulletin: IBM Cloud Kubernetes Service is affected by two containerd security vulnerabilities (CVE-2023-28642) (CVE-2023-27561)
2023-06-12 12:41:31
Security Bulletin: CVE-2022-27664, CVE-2022-21698, CVE-2021-43565 and CVE-2022-27191 may affect IBM CICS TX Standard
2023-03-29 19:03:37
Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from curl, go and apr-util
2023-06-16 04:09:05
openvas
openvas
Huawei EulerOS: Security Advisory for docker-runc (EulerOS-SA-2023-2611)
2023-08-08 00:00:00
Fedora: Security Advisory for stargz-snapshotter (FEDORA-2022-a7d438b30b)
2022-04-15 00:00:00
Fedora: Security Advisory for skopeo (FEDORA-2022-eda0e65b01)
2022-04-03 00:00:00
github
github
runc AppArmor bypass with symlinked /proc
2023-03-30 20:20:23
Uncontrolled Resource Consumption in promhttp
2022-02-16 22:26:35
redos
redos
ROS-20231031-01
2023-10-31 00:00:00
suse
suse
Security update for golang-github-prometheus-alertmanager (important)
2022-06-20 00:00:00
Security update for node_exporter (important)
2022-06-20 00:00:00
Security update for golang-github-prometheus-node_exporter (moderate)
2022-10-26 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: skopeo-1.7.0-1.fc36
2022-03-29 00:20:58
[SECURITY] Fedora 34 Update: skopeo-1.7.0-1.fc34
2022-04-02 01:57:12
[SECURITY] Fedora 35 Update: stargz-snapshotter-0.10.2-1.fc35
2022-04-14 16:07:28
redhat
redhat
(RHSA-2022:4667) Moderate: OpenShift Virtualization 4.10.1 RPMs security and bug fix update
2022-05-18 15:34:20
(RHSA-2023:2014) Moderate: OpenShift Container Platform 4.11.39 bug fix and security update
2023-05-02 01:50:20
(RHSA-2022:1461) Important: Logging Subsystem 5.4 - Red Hat OpenShift Security and Bug update
2022-04-20 20:47:51
mageia
mageia
Updated golang-github-prometheus-client packages fix security vulnerability
2022-05-15 13:06:40
Updated opencontainers-runc packages fix security vulnerability
2023-04-07 00:20:12
oraclelinux
oraclelinux
buildah security update
2023-07-19 00:00:00
aardvark-dns security update
2023-07-19 00:00:00
runc security update
2023-11-11 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package runc version 1.1.5-alt1
2023-04-20 00:00:00
ubuntu
ubuntu
runC vulnerabilities
2023-05-18 00:00:00
runC vulnerabilities
2023-05-23 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2209
2023-08-08 07:51:13
almalinux
almalinux
Moderate: runc security update
2023-11-07 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0038
2023-06-27 00:00:00

8 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.6%

JSON
Related for RHSA-2024:0564
nessus35ubuntucve2alpinelinux2cbl_mariner17cgr2cve2debiancve2redhatcve2cvelist2veracode2wolfi2prion2osv16ibm3openvas52github2redos1suse7fedora22redhat13mageia2oraclelinux3altlinux1ubuntu2rosalinux1almalinux1photon1