Kernel update: New kernel 2.6.32-042stab133.2 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0

This update provides a new kernel 2.6.32-042stab133.2 for Virtuozzo Containers for Linux 4.7 and Server Bare Metal 5.0. The new kernel introduces a stability fix. Vulnerability id: PSBM-87976, OVZ-7048, OVZ-7049 Regression in 2.6.32-042stab133.1: Host could crash during processing of quite rare...

IBM WebSphere Application Server Liberty Information Disclosure Vulnerability (CNVD-2018-17070)

IBM WebSphere Application Server WAS is an application server product developed and distributed by IBM in the U.S. It is a platform for Java EE and Web services applications and the foundation of the IBM WebSphere software platform.Liberty is a dynamic server profile for WAS. An information...

GLSA-201808-02 : LinuX Containers user space utilities: Arbitrary file read

The remote host is affected by the vulnerability described in GLSA-201808-02 LinuX Containers user space utilities: Arbitrary file read lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. This code path may be used by an unprivileged user to check...

LinuX Containers user space utilities: Arbitrary file read

Background LinuX Containers user space utilities. Description lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. This code path may be used by an unprivileged user to check for the existence of a path which they wouldn’t otherwise be able to reac...

Important kernel security update: CVE-2018-3620 and other issues; new kernel 2.6.32-042stab133.1 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0

This update provides a new kernel 2.6.32-042stab133.1 for Virtuozzo Containers for Linux 4.7 and Server Bare Metal 5.0 that is a rebase to the Red Hat Enterprise Linux 6.10 kernel 2.6.32-754.3.5.el6. The new kernel inherits a number of security fixes from the new RHEL kernel and introduces intern...

[SECURITY] Fedora 28 Update: cri-o-1.11.1-1.git1759204.fc28

Kubernetes Container Runtime Interface for OCI-based containers...

Kernel update: Virtuozzo ReadyKernel patch 57.0 for Virtuozzo 7.0.7 to 7.0.8

The cumulative Virtuozzo ReadyKernel patch was updated with a stability fix. The patch applies to kernels 3.10.0-693.17.1.vz7.43.10 7.0.7, 3.10.0-693.21.1.vz7.46.7 7.0.7 HF2, 3.10.0-693.21.1.vz7.48.2 7.0.7 HF3, 3.10.0-862.9.1.vz7.63.3 7.0.8. Vulnerability id: PSBM-87338 Kernel module 'ipset' trie...

DEBIAN-CVE-2018-6556

lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. This code path may be used by an unprivileged user to check for the existence of a path which they wouldn't otherwise be able to reach. It may also be used to trigger side effects by causing a...

USN-3730-1: LXC vulnerability

Matthias Gerstner discovered that LXC incorrectly handled the lxc-user-nic utility. A local attacker could possibly use this issue to open arbitrary files...

USN-3730-1 lxc vulnerability

Matthias Gerstner discovered that LXC incorrectly handled the lxc-user-nic utility. A local attacker could possibly use this issue to open arbitrary files...

Mesosphere Marathon Web UI Public WAN (Internet) / Public LAN Accessible

The script checks if the Mesosphere Marathon Web UI is accessible from a public WAN Internet / public LAN. Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Important kernel security update: CVE-2018-3639 (x86 AMD) and other issues; new kernel 2.6.32-042stab132.1 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0

This update provides a new kernel 2.6.32-042stab132.1 for Virtuozzo Containers for Linux 4.7 and Server Bare Metal 5.0 that is a rebase to the Red Hat Enterprise Linux 6.10 kernel 2.6.32-754.2.1.el6. The new kernel introduces security fixes. Vulnerability id: CVE-2018-3639 x86 AMD An industry-wid...

[SECURITY] Fedora 28 Update: singularity-2.5.2-1.fc28

Singularity provides functionality to make portable containers that can be used across host environments...

[SECURITY] Fedora 27 Update: singularity-2.5.2-1.fc27

Singularity provides functionality to make portable containers that can be used across host environments...

[SECURITY] Fedora 27 Update: podman-0.6.4-1.gitd5beb2f.fc27

Manage Pods, Containers and Container Images libpod provides a library for applications looking to use the Container Pod concept popularized by Kubernetes...

Privilege Escalation

github.com/projectatomic/libpod is vulnerable to privilege escalation attack. The vulnerability exists because it does not limit the capabilities of containers executed by non-root users in the default setting, resulting in the container running with higher privileges than required...

PT-2018-10144 · Red Hat · Podman

Name of the Vulnerable Software and Affected Versions: podman versions prior to 0.6.1 Description: The issue arises from podman not dropping capabilities when a container is executed as a non-root user, resulting in unnecessary privileges being granted to the container. Recommendations: For...

[SECURITY] Fedora 28 Update: podman-0.6.4-1.gitd5beb2f.fc28

Manage Pods, Containers and Container Images libpod provides a library for applications looking to use the Container Pod concept popularized by Kubernetes...

RHEL 7 : podman (RHSA-2018:2037)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:2037 advisory. The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods...

Moderate: Red Hat Security Advisory: podman security update

An update for podman is now available for Red Hat Enterprise Linux 7 Extras. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...