Cache driver GetBlob() allows read access to any blob without access control check

Summary Cache driver GetBlob allows read access to any blob without access control check Details If a Zot accessControl policy allows users read access to some repositories but restricts read access to other repositories and dedupe is enabled it is enabled by default, then an attacker who knows t...

GHSA-55R9-5MX9-QQ7R Cache driver GetBlob() allows read access to any blob without access control check

Summary Cache driver GetBlob allows read access to any blob without access control check Details If a Zot accessControl policy allows users read access to some repositories but restricts read access to other repositories and dedupe is enabled it is enabled by default, then an attacker who knows t...

CVE-2024-39897

zot is an OCI image registry. Prior to 2.1.0, the cache driver GetBlob allows read access to any blob without access control check. If a Zot accessControl policy allows users read access to some repositories but restricts read access to other repositories and dedupe is enabled it is enabled by...

fuse-overlayfs bug fix and enhancement update

An update is available for fuse-overlayfs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The fuse-overlayfs package provides an overlayfs FUSE implementation,...