Azure Linux 3.0 Security Update: libcontainers-common (CVE-2024-1753)

The version of libcontainers-common installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1753 advisory. - A flaw was found in Buildah and subsequently Podman Build which allows containers to mount...

Azure Linux 3.0 Security Update: golang / ig / moby-engine / skopeo (CVE-2022-2879)

The version of golang / ig / moby-engine / skopeo installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-2879 advisory. - Reader.Read does not set a limit on the maximum size of file headers. A malicious...

Azure Linux 3.0 Security Update: libcontainers-common / telegraf (CVE-2024-37298)

The version of libcontainers-common / telegraf installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-37298 advisory. - gorilla/schema converts structs to and from form values. Prior to version 1.4.1...

CVE-2024-24786 affecting package libcontainers-common for versions less than 20240213-3

CVE-2024-24786 affecting package libcontainers-common for versions less than 20240213-3. A patched version of the package is available...

CVE-2024-3727 affecting package libcontainers-common for versions less than 20210626-7

CVE-2024-3727 affecting package libcontainers-common for versions less than 20210626-7. A patched version of the package is available...

CVE-2022-32149 affecting package libcontainers-common for versions less than 20210626-6

CVE-2022-32149 affecting package libcontainers-common for versions less than 20210626-6. A patched version of the package is available...

CVE-2021-43565 affecting package libcontainers-common for versions less than 20210626-5

CVE-2021-43565 affecting package libcontainers-common for versions less than 20210626-5. A patched version of the package is available...

CVE-2024-37298 affecting package libcontainers-common for versions less than 20210626-4

CVE-2024-37298 affecting package libcontainers-common for versions less than 20210626-4. A patched version of the package is available...

CVE-2024-1753 affecting package libcontainers-common for versions less than 20240213-2

CVE-2024-1753 affecting package libcontainers-common for versions less than 20240213-2. A patched version of the package is available...

CVE-2024-37298 affecting package libcontainers-common for versions less than 20240213-2

CVE-2024-37298 affecting package libcontainers-common for versions less than 20240213-2. A patched version of the package is available...

CVE-2022-2879 affecting package libcontainers-common for versions less than 20240213-2

CVE-2022-2879 affecting package libcontainers-common for versions less than 20240213-2. A patched version of the package is available...

CVE-2024-3727 affecting package libcontainers-common for versions less than 20240213-2

CVE-2024-3727 affecting package libcontainers-common for versions less than 20240213-2. A patched version of the package is available...

CVE-2024-6104 affecting package libcontainers-common for versions less than 20240213-2

CVE-2024-6104 affecting package libcontainers-common for versions less than 20240213-2. A patched version of the package is available...

CVE-2023-45288 affecting package libcontainers-common for versions less than 20240213-2

CVE-2023-45288 affecting package libcontainers-common for versions less than 20240213-2. A patched version of the package is available...

AZL-43103 CVE-2024-37298 affecting package libcontainers-common for versions less than 20240213-2

gorilla/schema converts structs to and from form values. Prior to version 1.4.1 Running schema.Decoder.Decode on a struct that has a field of type struct... opens it up to malicious attacks regarding memory allocations, taking advantage of the sparse slice functionality. Any use of...

AZL-43071 CVE-2024-37298 affecting package libcontainers-common for versions less than 20210626-4

gorilla/schema converts structs to and from form values. Prior to version 1.4.1 Running schema.Decoder.Decode on a struct that has a field of type struct... opens it up to malicious attacks regarding memory allocations, taking advantage of the sparse slice functionality. Any use of...

AZL-42892 CVE-2024-6104 affecting package libcontainers-common for versions less than 20240213-2

go-retryablehttp prior to 0.7.7 did not sanitize urls when writing them to its log file. This could lead to go-retryablehttp writing sensitive HTTP basic auth credentials to its log file. This vulnerability, CVE-2024-6104, was fixed in go-retryablehttp 0.7.7...

OPENSUSE-SU-2024:10931-1 libcontainers-common-20210626-5.1 on GA media

These are all security issues fixed in the libcontainers-common-20210626-5.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:11757-1 libcontainers-common-20210626-7.1 on GA media

These are all security issues fixed in the libcontainers-common-20210626-7.1 package on the GA media of openSUSE Tumbleweed...

AZL-42343 CVE-2024-3727 affecting package libcontainers-common for versions less than 20210626-7

A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks...