Lucene search
+L

145 matches found

SUSE Linux
SUSE Linux
added 2024/12/05 2:57 p.m.4 views

Security update for docker-stable

This update for docker-stable fixes the following issues: CVE-2024-41110: Fixed Authz zero length regression bsc1228324. Bug fixes: Allow users to disable SUSE secrets support by setting DOCKERSUSESECRETSENABLE=0 in /etc/sysconfig/docker bsc1231348. Import specfile changes for docker-buildx as we...

9.9CVSS6.4AI score0.16496EPSS
Exploits0References14
OSV
OSV
added 2024/12/05 2:57 p.m.12 views

SUSE-SU-2024:4204-1 Security update for docker-stable

This update for docker-stable fixes the following issues: - CVE-2024-41110: Fixed Authz zero length regression bsc1228324. Bug fixes: - Allow users to disable SUSE secrets support by setting DOCKERSUSESECRETSENABLE=0 in /etc/sysconfig/docker bsc1231348. - Import specfile changes for docker-buildx...

9.9CVSS9.7AI score0.16496EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.27 views

CBL Mariner 2.0 Security Update: docker-buildx / docker-compose / moby-compose / moby-engine (CVE-2024-23650)

The version of docker-buildx / docker-compose / moby-compose / moby-engine installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-23650 advisory. - BuildKit is a toolkit for converting source code to bui...

5.3CVSS6.9AI score0.00957EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.29 views

CBL Mariner 2.0 Security Update: docker-compose / moby-engine / docker-buildx / moby-cli (CVE-2024-23653)

The version of docker-compose / moby-engine / docker-buildx / moby-cli installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-23653 advisory. - BuildKit is a toolkit for converting source code to build...

9.8CVSS6.9AI score0.02983EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.35 views

CBL Mariner 2.0 Security Update: cri-tools / docker-buildx / kubernetes / opa / prometheus (CVE-2023-45142)

The version of cri-tools / docker-buildx / kubernetes / opa / prometheus installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45142 advisory. - OpenTelemetry-Go Contrib is a collection of third-party...

7.5CVSS7.9AI score0.01364EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.37 views

CBL Mariner 2.0 Security Update: containerd / cri-tools / docker-buildx / docker-compose / moby-containerd-cc (CVE-2023-47108)

The version of containerd / cri-tools / docker-buildx / docker-compose / moby-containerd-cc installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-47108 advisory. - OpenTelemetry-Go Contrib is a collecti...

7.5CVSS6.9AI score0.01592EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.30 views

CBL Mariner 2.0 Security Update: cert-manager / cf-cli / docker-buildx / erlang / kubernetes / kubevirt (CVE-2023-48795)

The version of cert-manager / cf-cli / docker-buildx / erlang / kubernetes / kubevirt installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-48795 advisory. - The SSH transport protocol with certain...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.26 views

CBL Mariner 2.0 Security Update: application-gateway-kubernetes-ingress / azcopy / blobfuse2 / cert-manager / coredns (CVE-2023-45288)

The version of application-gateway-kubernetes-ingress / azcopy / blobfuse2 / cert-manager / coredns installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45288 advisory. - An attacker May cause an HTTP/...

7.5CVSS7.5AI score0.91969EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.15 views

CVE-2024-24786 affecting package docker-buildx for versions less than 0.14.0-1

CVE-2024-24786 affecting package docker-buildx for versions less than 0.14.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.6AI score0.01262EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.26 views

CVE-2023-44487 affecting package docker-buildx for versions less than 0.14.0-1

CVE-2023-44487 affecting package docker-buildx for versions less than 0.14.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.5AI score0.99999EPSS
Exploits20
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.37 views

CVE-2024-23650 affecting package docker-buildx for versions less than 0.14.0-1

CVE-2024-23650 affecting package docker-buildx for versions less than 0.14.0-1. An upgraded version of the package is available that resolves this issue...

5.3CVSS6.5AI score0.00957EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.18 views

CVE-2023-45288 affecting package docker-buildx for versions less than 0.14.0-1

CVE-2023-45288 affecting package docker-buildx for versions less than 0.14.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.8AI score0.91969EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.24 views

CVE-2023-45142 affecting package docker-buildx for versions less than 0.14.0-1

CVE-2023-45142 affecting package docker-buildx for versions less than 0.14.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.5AI score0.01364EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.20 views

CVE-2023-47108 affecting package docker-buildx for versions less than 0.14.0-1

CVE-2023-47108 affecting package docker-buildx for versions less than 0.14.0-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.5AI score0.01592EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/05/17 9:38 p.m.17 views

CVE-2024-23653 affecting package docker-buildx for versions less than 0.14.0-1

CVE-2024-23653 affecting package docker-buildx for versions less than 0.14.0-1. An upgraded version of the package is available that resolves this issue...

9.8CVSS6.6AI score0.02983EPSS
Exploits0
OSV
OSV
added 2024/04/04 9:15 p.m.10 views

AZL-38260 CVE-2023-45288 affecting package docker-buildx for versions less than 0.14.0-1

An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed MaxHeaderBytes, no...

7.5CVSS6.8AI score0.91969EPSS
Exploits1References1
OSV
OSV
added 2024/03/05 11:15 p.m.6 views

AZL-35641 CVE-2024-24786 affecting package docker-buildx for versions less than 0.14.0-1

The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set...

7.5CVSS6.7AI score0.01262EPSS
Exploits0References1
OSV
OSV
added 2024/01/31 10:15 p.m.8 views

AZL-35433 CVE-2024-23653 affecting package docker-buildx for versions less than 0.14.0-1

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In addition to running containers as build steps, BuildKit also provides APIs for running interactive containers based on built images. It was possible to use these APIs to ask...

9.8CVSS6.6AI score0.02983EPSS
Exploits0References1
OSV
OSV
added 2024/01/31 10:15 p.m.8 views

AZL-35432 CVE-2024-23650 affecting package docker-buildx for versions less than 0.14.0-1

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit client or frontend could craft a request that could lead to BuildKit daemon crashing with a panic. The issue has been fixed in v0.12.5. As a workaround, avoi...

5.3CVSS6.6AI score0.00957EPSS
Exploits0References1
OSV
OSV
added 2023/12/18 4:15 p.m.11 views

AZL-35435 CVE-2023-48795 affecting package docker-buildx for versions less than 0.14.0-1

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted from the extension negotiation message, and a client and server may consequently end up with a connecti...

5.9CVSS6.7AI score0.93305EPSS
Exploits4References1
Rows per page
Query Builder