Lucene search
K

352 matches found

RedHat Linux
RedHat Linux
added 2024/09/03 6:57 p.m.17 views

Moderate: Red Hat Security Advisory: runc security update

An update for runc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

5.9CVSS6.8AI score0.00667EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2024/09/03 12:0 a.m.38 views

Moderate: runc security update

The runC tool is a lightweight, portable implementation of the Open Container Format OCF that provides container runtime. Security Fixes: golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm CVE-2024-24783 For more details about the security issues, including th...

5.9CVSS7.2AI score0.00667EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/07/24 4:49 p.m.121 views

CVE-2024-41110 Moby authz zero length regression

Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain versions of Docker Engine, which could allow an attacker to bypass authorization plugins AuthZ under specific circumstances. The base likelihood of this being...

9.9CVSS0.16496EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2024/07/23 4:39 p.m.18 views

Important: Red Hat Security Advisory: runc security update

An update for runc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS7.2AI score0.01533EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.27 views

EulerOS 2.0 SP9 : docker-engine (EulerOS-SA-2024-1928)

According to the versions of the docker-engine packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Moby is an open source container framework developed by Docker Inc. that is distributed as Docker, Mirantis Container Runtime, and various...

8.7CVSS7.3AI score0.02733EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.28 views

CBL Mariner 2.0 Security Update: moby-containerd / moby-engine (CVE-2023-25153)

The version of moby-containerd / moby-engine installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-25153 advisory. - containerd is an open source container runtime. Before versions 1.6.18 and 1.5.18, wh...

6.2CVSS7.1AI score0.00439EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2024/07/01 7:20 p.m.33 views

GeoServer's Server Status shows sensitive environmental variables and Java properties

GeoServer's Server Status page and REST API at /geoserver/rest/about/status lists all environment variables and Java properties to any GeoServer user with administrative rights as part of those modules' status message. These variables/properties can also contain sensitive information, such as...

4.9CVSS6.9AI score0.00397EPSS
Exploits0References3Affected Software2
RedHat Linux
RedHat Linux
added 2024/06/27 2:28 a.m.7 views

cri-o: malicious container can create symlink on host

A flaw was found in cri-o. A malicious container can create a symbolic link to arbitrary files on the host via directory traversal “../“. This flaw allows the container to read and write to arbitrary files on the host system...

8.1CVSS5.8AI score0.01237EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.7 views

CRI-O Security Vulnerabilities

CRI-O is a lightweight container runtime environment for Kubernetes systems. A security vulnerability exists in CRI-O that stems from the presence of a directory traversal vulnerability that allows reading and writing arbitrary files on the host system...

8.1CVSS6.9AI score0.01237EPSS
Exploits0References9
Microsoft CVE
Microsoft CVE
added 2024/05/31 7:0 a.m.3 views

Cri-o: arbitrary command injection via pod annotation

...

7.2CVSS7.7AI score0.01418EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/05/16 6:36 p.m.4 views

cri-o: Arbitrary command injection via pod annotation

A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an arbitrary annotation may perform an arbitrary action on the host system...

7.2CVSS7.3AI score0.01418EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/05/09 12:0 a.m.27 views

EulerOS 2.0 SP10 : docker-engine (EulerOS-SA-2024-1585)

According to the versions of the docker-engine packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service...

8.7CVSS7AI score0.04561EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2024/05/09 12:0 a.m.28 views

EulerOS 2.0 SP10 : docker-engine (EulerOS-SA-2024-1563)

According to the versions of the docker-engine packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service...

8.7CVSS7AI score0.04561EPSS
Exploits2References7
RedHat Linux
RedHat Linux
added 2024/04/30 10:27 a.m.36 views

Moderate: Red Hat Security Advisory: runc security update

An update for runc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

7.5CVSS6.7AI score0.01618EPSS
Exploits0References7
OSV
OSV
added 2024/04/30 12:0 a.m.36 views

ALSA-2024:2180 Moderate: runc security update

The runC tool is a lightweight, portable implementation of the Open Container Format OCF that provides container runtime. Security Fixes: golang: io/fs: stack exhaustion in Glob CVE-2022-30630 golang: compress/gzip: stack exhaustion in Reader.Read CVE-2022-30631 golang: path/filepath: stack...

7.5CVSS7.1AI score0.01618EPSS
Exploits0References10
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.41 views

Moderate: runc security update

The runC tool is a lightweight, portable implementation of the Open Container Format OCF that provides container runtime. Security Fixes: golang: io/fs: stack exhaustion in Glob CVE-2022-30630 golang: compress/gzip: stack exhaustion in Reader.Read CVE-2022-30631 golang: path/filepath: stack...

7.5CVSS7.8AI score0.01618EPSS
Exploits0References10
Circl
Circl
added 2024/04/29 4:19 p.m.7 views

CVE-2024-3154

creationtimestamp| type| source ---|---|--- 2024-04-29 16:19:03+00:00| published-proof-of-concept| https://github.com/cri-o/cri-o/security/advisories/GHSA-2cgq-h8xw-2v5j...

7.2CVSS6.8AI score0.01418EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/22 12:0 a.m.2 views

CRI-O 命令注入漏洞

CRI-O is a lightweight container runtime environment for Kubernetes systems. CRI-O suffers from a security vulnerability that stems from the ability to inject arbitrary systemd attributes via Pod annotations, which allows any user who can create a Pod using the annotations to perform arbitrary...

7.2CVSS8.2AI score0.01418EPSS
Exploits0References3
OSV
OSV
added 2024/04/19 11:7 a.m.2 views

OESA-2024-1474 cri-o security update

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface. Security Fixes: Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amount...

4.3CVSS5.1AI score0.01956EPSS
Exploits0References2
OSV
OSV
added 2024/04/19 11:7 a.m.3 views

OESA-2024-1472 cri-o security update

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface. Security Fixes: Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amount...

4.3CVSS5.1AI score0.01956EPSS
Exploits0References2
Rows per page
Query Builder