219 matches found
CVE-2020-10749
A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or...
Design/Logic Flaw
A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or...
UBUNTU-CVE-2020-10749
A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending rogue IPv6 router advertisements to the host or...
PT-2020-12311 · Containernetworking +5 · Containernetworking-Plugins +5
Name of the Vulnerable Software and Affected Versions: containernetworking/plugins versions prior to 0.8.6 Description: A vulnerability was found that allows malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sendi...
IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router advertisements
CVSS Rating: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L 6.0 Medium A cluster configured to use an affected container networking implementation is susceptible to man-in-the-middle MitM attacks. By sending “rogue” router advertisements, a malicious container can reconfigure the host to redirect...
container-tools:ol8 security update
buildah 1.11.6-8.0.1 - Fixes troubles with oracle registry login Orabug: 29937283 1.11.6-8 - fix 'CVE-2020-10696 buildah: crafted input tar file may lead to local file overwriting during image build process' - Resolves: 1817742 1.11.6-7 - fix 'COPY command takes long time with buildah' - Resolves...
container-tools:2.0 security update
An update is available for udica, toolbox, python-podman-api, slirp4netns, containernetworking-plugins, criu, cockpit-podman. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
container-tools:1.0 security update
An update is available for fuse-overlayfs, oci-umount, runc, skopeo, oci-systemd-hook, containernetworking-plugins. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE li...
RHEL 7 : containernetworking-plugins (RHSA-2020:0406)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:0406 advisory. The Container Network Interface CNI project consists of a specification and libraries for writing plug- ins for configuring network interfac...
Important: Red Hat Security Advisory: containernetworking-plugins security update
An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 7 Extras. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...
container-tools:rhel8 security, bug fix, and enhancement update
An update is available for containernetworking-plugins, python-podman-api, udica, cockpit-podman. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The...
container-tools:ol8 security and bug fix update
buildah 1.9.0-5.0.1 - Fixes troubles with oracle registry login Orabug: 29937283 1.9.0-5 - Use autosetup macro again. 1.9.0-4 - Fix CVE-2019-10214 1734653. 1.9.0-3 - Resolves: 1721247 - enable fips mode 1.9.0-2 - Resolves: 1720654 - tests subpackage depends on golang explicitly 1.9.0-1 - Resolves...
Fedora 29 : containernetworking-plugins (2019-24217abfdf)
Resolves: 1715758 - CVE-2019-9946 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Networ...
[SECURITY] Fedora 29 Update: containernetworking-plugins-0.7.5-1.fc29
The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only with network connectivity of containers and removing allocated resourc ...
Fedora Update for containernetworking-plugins FEDORA-2019-24217abfdf
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora Update for containernetworking-plugins FEDORA-2019-d2b57d3b19
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 30 : containernetworking-plugins (2019-d2b57d3b19)
Resolves: 1715758 - CVE-2019-9946 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Networ...
[SECURITY] Fedora 30 Update: containernetworking-plugins-0.7.5-1.fc30
The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only with network connectivity of containers and removing allocated resourc ...
Moderate: Red Hat Bug Fix Advisory: containernetworking-plugins bug fix and enhancement update
An updated containernetworking-plugins package that fixes several bugs and adds various enhancements is now available for Red Hat Enterprise Linux 7 Extras. The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interface...