15 matches found
PT-2026-42534
Name of the Vulnerable Software and Affected Versions Kata Containers runtime-rs versions prior to 3.31.0 Description A symlink escape exists when virtiofsd is run as root with the flags --sandbox none and --seccomp none. A raw FUSE SYMLINK request allows a guest root user to create symlinks owne...
conmon security update
conmon 2.1.3-8 - address CVE-2023-39326 cri-o 1.25.5-1 - Added Oracle Specifile Files for cri-o cri-tools 1.25.0-3 - Resolve CVE-2023-39326 flannel-cni-plugin 1.0.1-4 - Resolve CVE-2023-39326 helm 3.11.1-3 - address CVE-2023-39326 istio 1.16.7-3 - Updated Golang to 1.20.12 to address CVE...
conmon security update
conmon 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build cri-o 1.26.3-3 - Resolve CVE-2023-39325 1.26.3-2 - Add support for ARM build cri-tools 1.26.1-3 - Resolve...
Oracle Linux 7 : Unbreakable Enterprise kernel-container kata-image kata-runtime kata kubernetes kubernetes istio olcne (ELSA-2020-5765)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-5765 advisory. - x86/speculation: Add SRBDS vulnerability and mitigation documentation Mark Gross Orabug: 31446720 CVE-2020-0543 - x86/speculation: Add Special Regist...
Link Following in Kata Runtime
A malicious guest compromised before a container creation e.g. a malicious guest image or a guest running multiple containers can trick the kata runtime into mounting the untrusted container filesystem on any host path, potentially allowing for code execution on the host. This issue affects Kata...
GHSA-877X-32PM-P28X Link Following in Kata Runtime
A malicious guest compromised before a container creation e.g. a malicious guest image or a guest running multiple containers can trick the kata runtime into mounting the untrusted container filesystem on any host path, potentially allowing for code execution on the host. This issue affects Kata...
olcne security update
kubernetes 1.18.10-3 - Kata CVE-2020-28914 kata-proxy 1.11.5-1 - Added Oracle Specific Build Files for kata-proxy kata-shim 1.11.5-1 - Added Oracle Specific Build Files for kata-shim kata-ksm-throttler 1.11.5-1 - Added Oracle Specific Build Files for kata-ksm-throttler kata-runtime 1.11.5-1 - Add...
olcne security update
kata-runtime 1.7.3-1.0.7 - Address CVE-2020-28914 kata 1.7.3-1.0.12 - UEKR6 guest kernel support 1.7.3-1.0.11 - Address CVE-2020-28914 kubernetes 1.17.9-1.0.6 - Kata CVE-2020-28914 olcne 1.1.10-1 - Address CVE-2020-28914: An improper file permissions vulnerability affects Kata Containers prior to...
Fedora 31 : kata-runtime (2020-7a0b6071a4)
Security fix for CVE-2020-2026 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...
Fedora: Security Advisory for kata-runtime (FEDORA-2020-7a0b6071a4)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 31 Update: kata-runtime-1.11.1-3.fc31
Kata runtime to run containers in virtual machines Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines VMs that feel and perform like containers, but provide the workload isolation and security advantages of VMs...
Unbreakable Enterprise kernel-container kata-image kata-runtime kata kubernetes kubernetes istio olcne security update
kernel-uek-container 4.14.35-1902.303.5.3.el7 - rds: Deregister all FRWR mr with freemr Hans Westgaard Ry Orabug: 31476202 - Revert 'rds: Do not cancel RDMAs that have been posted to the HCA' Gerd Rausch Orabug: 31475329 - Revert 'rds: Introduce rdsconntopath helper' Gerd Rausch Orabug: 31475329 ...
Unbreakable Enterprise kernel-container kata-image kata-runtime kata kubernetes olcne security update
kernel-uek-container 4.14.35-1902.303.5.3.el7 - rds: Deregister all FRWR mr with freemr Hans Westgaard Ry Orabug: 31476202 - Revert 'rds: Do not cancel RDMAs that have been posted to the HCA' Gerd Rausch Orabug: 31475329 - Revert 'rds: Introduce rdsconntopath helper' Gerd Rausch Orabug: 31475329 ...
CVE-2020-2026
A malicious guest compromised before a container creation e.g. a malicious guest image or a guest running multiple containers can trick the kata runtime into mounting the untrusted container filesystem on any host path, potentially allowing for code execution on the host. This issue affects: Kata...
CVE-2020-2026
A malicious guest compromised before a container creation e.g. a malicious guest image or a guest running multiple containers can trick the kata runtime into mounting the untrusted container filesystem on any host path, potentially allowing for code execution on the host. This issue affects: Kata...