TencentOS Server 4: crun (TSSA-2024:0811)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0811 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

TencentOS Server 4: runc (TSSA-2024:0871)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0871 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

EulerOS 2.0 SP12 : docker-runc (EulerOS-SA-2024-2501)

According to the versions of the docker-runc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an...

Huawei EulerOS: Security Advisory for docker-runc (EulerOS-SA-2024-2501)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for docker-runc (EulerOS-SA-2024-2525)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP12 : docker-runc (EulerOS-SA-2024-2525)

According to the versions of the docker-runc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an...

Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by a cri-o security vulnerability (CVE-2024-3154)

Summary Red Hat OpenShift on IBM Cloud is affected by a security vulnerability found in the cri-o component which could allow a remote authenticated attacker to execute arbitrary commands on the system CVE-2024-3154. Vulnerability Details CVEID: CVE-2024-3154 Description: CRI-O could allow a remo...

CBL Mariner 2.0 Security Update: cri-o (CVE-2024-3154)

The version of cri-o installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-3154 advisory. - A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user...

CVE-2024-3154 affecting package cri-o for versions less than 1.30.1-1

CVE-2024-3154 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-3154 affecting package cri-o for versions less than 1.22.3-2

CVE-2024-3154 affecting package cri-o for versions less than 1.22.3-2. A patched version of the package is available...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.13.43 security update

Red Hat OpenShift Container Platform release 4.13.43 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a...

RHEL 8 / 9 : OpenShift Container Platform 4.13.43 (RHSA-2024:3496)

The remote Redhat Enterprise Linux 8 / 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:3496 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private clo...

OESA-2024-1675 runc security update

runc is a CLI tool for spawning and running containers according to the OCI specification. Security Fixes: A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an arbitrary annotation may perform an arbitrary actio...

CVE-2024-3154

creationtimestamp| type| source ---|---|--- 2024-04-29 16:19:03+00:00| published-proof-of-concept| https://github.com/cri-o/cri-o/security/advisories/GHSA-2cgq-h8xw-2v5j...

CVE-2024-3154 vulnerabilities

Vulnerabilities for packages: kubernetes, ctop, wolfictl, grype, opentelemetry-collector-contrib, neuvector-scanner, cadvisor, buildah...

CVE-2024-3154 vulnerabilities

Vulnerabilities for packages: buildah, cadvisor-fips, opentelemetry-collector-contrib, cadvisor, kubernetes-fips, ctop, opentelemetry-collector-contrib-fips, neuvector-scanner, kubernetes, grype, wolfictl...

CVE-2024-3154 Cri-o: arbitrary command injection via pod annotation

A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an arbitrary annotation may perform an arbitrary action on the host system...

CVE-2024-3154 Cri-o: arbitrary command injection via pod annotation

A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an arbitrary annotation may perform an arbitrary action on the host system...

CVE-2024-3154

CVE-2024-3154 affects cri-o. A flaw lets an arbitrary systemd property be injected via pod annotations, enabling an attacker who can create a pod with a crafted annotation to perform an arbitrary action on the host. The record does not specify exact vulnerable versions or a fixed patch version. P...