CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/12/19 9:42 a.m.•6 views

CLSA-2025-1766137317 podman: Fix of 2 CVEs

CVE-2025-52881: container escape and denial of service due to arbitrary write gadgets and procfs write redirects - CVE-2025-58183: fix unbounded allocation when parsing GNU sparse map...

7.5CVSS7.5AI score0.00024EPSS

Exploits1References1

OSV•added 2025/12/19 9:5 a.m.•2 views

RLSA-2025:23325 Moderate: podman security update

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fixes: golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 For...

7.5CVSS6.8AI score0.00024EPSS

Exploits0References2

Tenable Nessus•added 2025/12/19 12:0 a.m.•1 views

RockyLinux 9 : skopeo (RLSA-2025:23326)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:23326 advisory. golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 Tenable has extracted the preceding description block directly from the...

Tenable Nessus•added 2025/12/19 12:0 a.m.•1 views

RockyLinux 9 : podman (RLSA-2025:23325)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:23325 advisory. golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 Tenable has extracted the preceding description block directly from the...

RedHat Linux•added 2025/12/18 10:17 a.m.•3 views

Moderate: Red Hat Security Advisory: podman security update

An update for podman is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

RedHat Linux•added 2025/12/18 10:9 a.m.•3 views

golang: archive/tar: Unbounded allocation when parsing GNU sparse map

A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go...

RedHat Linux•added 2025/12/18 10:8 a.m.•4 views

Exploits0References8

golang: archive/tar: Unbounded allocation when parsing GNU sparse map

Tenable Nessus•added 2025/12/18 12:0 a.m.•2 views

Exploits0References8

RHEL 10 : skopeo (RHSA-2025:23294)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:23294 advisory. The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify...

Tenable Nessus•added 2025/12/18 12:0 a.m.•0 views

Exploits0References5

RHEL 9 : podman (RHSA-2025:23325)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:23325 advisory. The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods...

Tenable Nessus•added 2025/12/18 12:0 a.m.•1 views

Exploits0References6

RHEL 10 : podman (RHSA-2025:23295)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:23295 advisory. The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods...

AlmaLinux•added 2025/12/16 12:0 a.m.•2 views

Exploits0References6

Moderate: skopeo security update

The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files. Security Fixes: golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 For more details about the security issues,...

OSV•added 2025/12/16 12:0 a.m.•3 views

ALSA-2025:23295 Moderate: podman security update

4.3CVSS6.8AI score0.00024EPSS

OSV•added 2025/12/16 12:0 a.m.•3 views

ALSA-2025:23294 Moderate: skopeo security update

4.3CVSS6.9AI score0.00024EPSS

Tenable Nessus•added 2025/12/15 12:0 a.m.•1 views

AlmaLinux 9 : grafana (ALSA-2025:23087)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:23087 advisory. golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 Tenable has extracted the preceding description block directly from the...

OSV•added 2025/12/13 9:11 a.m.•3 views

RLSA-2025:23088 Moderate: grafana security update

7.5CVSS8.5AI score0.00024EPSS

Exploits0References2

Tenable Nessus•added 2025/12/12 12:0 a.m.•1 views

AlmaLinux 10 : grafana (ALSA-2025:23088)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:23088 advisory. golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 Tenable has extracted the preceding description block directly from the...

OSV•added 2025/12/11 9:7 a.m.•3 views

RLSA-2025:23087 Moderate: grafana security update

7.5CVSS6.6AI score0.00024EPSS

Exploits0References2

RedHat Linux•added 2025/12/11 1:0 a.m.•1 views

golang: archive/tar: Unbounded allocation when parsing GNU sparse map