Lucene search
+L

59 matches found

OSV
OSV
added 2025/07/28 9:31 p.m.4 views

GHSA-RPCF-RMH6-42XR Netavark Has Possible DNS Resolve Confusion

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS7AI score0.0029EPSS
Exploits0References10
NVD
NVD
added 2025/07/28 7:15 p.m.10 views

CVE-2025-8283

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS0.0029EPSS
Exploits0References5
OSV
OSV
added 2025/07/28 7:15 p.m.10 views

UBUNTU-CVE-2025-8283

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS5.8AI score0.0029EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/07/28 6:16 p.m.6 views

CVE-2025-8283 Netavark: podman: netavark may resolve hostnames to unexpected hosts

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS6.4AI score0.0029EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/07/28 6:16 p.m.22 views

CVE-2025-8283 Netavark: podman: netavark may resolve hostnames to unexpected hosts

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS0.0029EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2025/07/28 6:16 p.m.10 views

CVE-2025-8283

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS5.7AI score0.0029EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/07/28 6:16 p.m.8 views

CVE-2025-8283

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS5.3AI score0.0029EPSS
Exploits0
CVE
CVE
added 2025/07/28 6:16 p.m.40 views

CVE-2025-8283

CVE-2025-8283 affects the netavark component used with Podman for container networking. Due to removal of the dns.podman search domain, netavark may reveal external servers when a valid A/AAAA record is answered, causing a container whose name matches a domain hostname to resolve to external host...

3.7CVSS6.4AI score0.0029EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2025/07/28 6:16 p.m.7 views

CVE-2025-8283 Netavark: podman: netavark may resolve hostnames to unexpected hosts

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS5.9AI score0.0029EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/07/28 2:40 p.m.6 views

CVE-2025-8283

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS6.4AI score0.0029EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/07/28 12:0 a.m.7 views

PT-2025-31142

Name of the Vulnerable Software and Affected Versions netavark affected versions not specified Description A vulnerability exists in the netavark package, a network stack for containers used with Podman. Due to the removal of the dns.podman search domain, netavark may return external servers if a...

3.7CVSS5.8AI score0.0029EPSS
Exploits0References32
Rockylinux
Rockylinux
added 2025/03/17 8:16 p.m.4 views

netavark bug fix and enhancement update

An update is available for netavark. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.5...

6.8AI score
Exploits0
SUSE Linux
SUSE Linux
added 2025/01/28 11:25 a.m.2 views

Security update for podman

This update for podman fixes the following issues: CVE-2024-9676: github.com/containers/storage: Fixed symlink traversal vulnerability in the containers/storage library can cause Denial of Service DoS bsc1231698 Load iptables and ip6tables kernel module bsc1214612 Required for rootless mode as a...

8.7CVSS6.6AI score0.01345EPSS
Exploits0References32
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.64 views

CVE-2023-22466 affecting package netavark 1.0.3-5

CVE-2023-22466 affecting package netavark 1.0.3-5. This CVE either no longer is or was never applicable...

5.4CVSS5.9AI score0.00569EPSS
Exploits0
Oracle linux
Oracle linux
added 2024/11/27 12:0 a.m.272 views

container-tools:ol8 security update

aardvark-dns buildah 2:1.33.11-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/fe85f0d - Resolves: RHEL-61853 2:1.33.10-1 - update to the latest content of...

7.5CVSS7.3AI score0.034EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/10/14 12:0 a.m.43 views

Oracle Linux 8 : container-tools:ol8 (ELSA-2024-8038)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8038 advisory. aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah cockpit-podman conmon containernetworking-plugins...

7.5CVSS6.9AI score0.01165EPSS
Exploits0References5
OSV
OSV
added 2024/09/10 7:43 a.m.22 views

SUSE-SU-2024:3186-1 Security update for buildah

This update for buildah fixes the following issues: Update to version 1.35.4: CVE-2024-3727 updates bsc1224117 Bump go-jose CVE-2024-28180 Bump ocicrypt and go-jose CVE-2024-28180 Update to version 1.35.3: correctly configure /etc/hosts and resolv.conf buildah: refactor resolv/hosts setup. rename...

8.6CVSS7.6AI score0.01956EPSS
Exploits0References8
OSV
OSV
added 2024/09/06 8:23 a.m.28 views

SUSE-SU-2024:3151-1 Security update for buildah

This update for buildah fixes the following issues: Update to version 1.35.4: Bump to Buildah v1.35.4 CVE-2024-3727 updates bsc1224117 integration test: handle new labels in 'bud and test --unsetlabel' Bump go-jose CVE-2024-28180 Bump ocicrypt and go-jose CVE-2024-28180 Update to version 1.35.3:...

8.6CVSS7.6AI score0.01956EPSS
Exploits0References8
OSV
OSV
added 2024/09/03 3:13 p.m.19 views

SUSE-SU-2024:3120-1 Security update for buildah, docker

This update for buildah, docker fixes the following issues: Changes in docker: - CVE-2024-23651: Fixed arbitrary files write due to race condition on mounts bsc1219267 - CVE-2024-23652: Fixed insufficient validation of parent directory on mount bsc1219268 - CVE-2024-23653: Fixed insufficient...

10CVSS8.4AI score0.16496EPSS
Exploits0References19
Oracle linux
Oracle linux
added 2024/07/03 12:0 a.m.56 views

container-tools security update

aardvark-dns 2:1.10.0-1 - update to https://github.com/containers/aardvark-dns/releases/tag/v1.10.0 - Related: Jira:RHEL-2110 2:1.9.0-1 - update to https://github.com/containers/aardvark-dns/releases/tag/v1.9.0 - Related: Jira:RHEL-2110 2:1.8.0-1 - update to...

7.5CVSS7.2AI score0.01262EPSS
Exploits0
Rows per page
Query Builder