Lucene search
+L

59 matches found

Oracle linux
Oracle linux
added 2026/07/10 12:0 a.m.7 views

podman security, bug fix, and enhancement update

5.8.2-4.0.1 - Rework CNI/Netavark detection logic JIRA: EVG-3769 - Rebuild on new golang to support experimental GODEBUG fipsnoenforceems - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 6:5.8.2-4 - bump to upstream commit a476c2b2 fixing CVE-2026-39835 CVE-2026-3982...

9.1CVSS6.2AI score0.00525EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/07/10 12:0 a.m.10 views

Oracle Linux 9 : podman (ELSA-2026-37123)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-37123 advisory. 5.8.2-4.0.1 - Rework CNI/Netavark detection logic JIRA: EVG-3769 - Rebuild on new golang to support experimental GODEBUG fipsnoenforceems - Drop...

9.1CVSS6.5AI score0.00525EPSS
Exploits0References8
Oracle linux
Oracle linux
added 2026/07/01 12:0 a.m.10 views

container-tools:ol8 security, bug fix, and enhancement update

aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah 2:1.33.14-3 - rebuild for CVE-2025-68121 - Resolves: RHEL-149262 cockpit-podman 84.1-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/84.1 - Related: Jira:RHEL-25557 conmon...

7.5CVSS6.8AI score0.00728EPSS
Exploits0
Oracle linux
Oracle linux
added 2026/06/23 12:0 a.m.10 views

podman security update

5.8.2-3.0.1 - Rework CNI/Netavark detection logic JIRA: EVG-3769 - Rebuild on new golang to support experimental GODEBUG fipsnoenforceems - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 6:5.8.2-3 - Rebuild for CVE-2026-32283 - Resolves: RHEL-167685 6:5.8.2-2 - Rebui...

7.5CVSS7.2AI score0.00728EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/18 2:12 a.m.4 views

Moderate: Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update

An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: netavark: netavark-2.0.0-1.hum1 aarch64, x8664 netavark-tests-2.0.0-1.hum1 aarch64, x8664 netavark-2.0.0-1.hum1.src src...

4.8CVSS5.9AI score0.0024EPSS
Exploits0References6
Wolfi
Wolfi
added 2026/04/17 1:48 a.m.14 views

GHSA-CQ8V-F236-94QC vulnerabilities

Vulnerabilities for packages: wadm, linkerd2-proxy, py3-xet-core, hurl, just, zellij, parseable, pixi, wasmcloud, wasmtime, netavark, sccache, berg, zizmor, yazi, vector, cargo-c, starship, atuin, mdbook, pgcat, rye, xh, buck2, zed, ntpd-rs, uv, shadowsocks-rust, ruff, rustup, uutils,...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2026/04/17 1:17 a.m.9 views

GHSA-CQ8V-F236-94QC vulnerabilities

Vulnerabilities for packages: virtiofsd, fnm, cargo-audit, netavark, atuin, worktrunk, rustup, zola, hurl, buck2, berg, asciinema, kdash, parseable, uutils, yazi, mise, shadowsocks-rust, zed, pgcat, fish, guestproxyagent, rav1e, cargo-c, bootc, just, biome, valkey-ldap, starship, samply,...

5.3AI score
Exploits0
EUVD
EUVD
added 2026/04/07 8:13 p.m.8 views

EUVD-2026-19972

netavark has incorrect error handling for malformed tcp packets...

6.2CVSS5.9AI score0.00383EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/07 8:13 p.m.16 views

netavark has incorrect error handling for malformed tcp packets

Impact A truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. Patches https://github.com/containers/aardvark-dns/commit/3b49ea7b38bdea134b7f03256f2e13f44ce73bb1 Workarounds None Credits Thanks to @dkane01 for reporti...

7.5CVSS5.9AI score0.00383EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/04/07 8:13 p.m.5 views

GHSA-HFPQ-X728-986J netavark has incorrect error handling for malformed tcp packets

Impact A truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. Patches https://github.com/containers/aardvark-dns/commit/3b49ea7b38bdea134b7f03256f2e13f44ce73bb1 Workarounds None Credits Thanks to @dkane01 for reporti...

7.5CVSS5.8AI score0.00383EPSS
Exploits0References5
CBLMariner
CBLMariner
added 2026/04/06 11:43 p.m.7 views

CVE-2026-25541 affecting package netavark for versions less than 1.10.3-7

CVE-2026-25541 affecting package netavark for versions less than 1.10.3-7. A patched version of the package is available...

7.5CVSS5.9AI score0.00559EPSS
Exploits1
Oracle linux
Oracle linux
added 2026/02/26 12:0 a.m.15 views

container-tools:ol8 security update

aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah 2:1.33.14-2 - rebuild for CVE-2025-61729 - Resolves: RHEL-140529 cockpit-podman 84.1-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/84.1 - Related: Jira:RHEL-25557 conmon...

7.5CVSS5.9AI score0.00795EPSS
Exploits3
OSV
OSV
added 2026/02/04 10:16 p.m.8 views

AZL-76703 CVE-2026-25541 affecting package netavark 1.10.3-5

Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition "vcapacity = newcap + offset" uses an unchecked addition. When newcap + offset...

7.5CVSS5.6AI score0.00559EPSS
Exploits1References1
Oracle linux
Oracle linux
added 2026/01/19 12:0 a.m.16 views

container-tools:rhel8 security update

aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah 2:1.33.14-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/a7f8179 - fixes 'CVE-2025-47913...

7.5CVSS5.5AI score0.00778EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.3 views

TencentOS Server 4: netavark (TSSA-2025:0782)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0782 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

3.7CVSS5.5AI score0.0029EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-22934

Malicious code in bioql PyPI...

3.7CVSS6.3AI score0.0029EPSS
Exploits0References7
Redos
Redos
added 2025/08/29 12:0 a.m.4 views

ROS-20250829-04

A vulnerability in a network stack designed to manage Netavark container networks is related to the removal of the of the dns.podman search domain. Exploitation of the vulnerability could allow an attacker acting remotely, gain access to sensitive information...

3.7CVSS6.7AI score0.0029EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-8283

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may...

3.7CVSS5.7AI score0.0029EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/07/29 11:27 p.m.8 views

SUSE CVE-2025-8283

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS6.8AI score0.0029EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/07/28 9:31 p.m.11 views

Netavark Has Possible DNS Resolve Confusion

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS7AI score0.0029EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder