Lucene search
K

109 matches found

OpenVAS
OpenVAS
added 2023/02/19 12:0 a.m.29 views

Debian: Security Advisory (DLA-3322-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.04409EPSS
Exploits1References4
Debian
Debian
added 2023/02/18 5:16 p.m.24 views

[SECURITY] [DLA 3322-1] golang-github-opencontainers-selinux security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3322-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler February 18, 2023 https://wiki.debian.org/LTS -...

7.5CVSS7.7AI score0.04409EPSS
Exploits1
OSV
OSV
added 2023/02/18 12:0 a.m.38 views

DLA-3322-1 golang-github-opencontainers-selinux - security update

Bulletin has no description...

7.5CVSS6.8AI score0.04409EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2022/11/08 9:27 a.m.57 views

Moderate: Red Hat Security Advisory: container-tools:rhel8 security, bug fix, and enhancement update

An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS6.9AI score0.03931EPSS
Exploits2References54
OSV
OSV
added 2022/11/08 6:20 a.m.38 views

RLSA-2022:7457 Moderate: container-tools:rhel8 security, bug fix, and enhancement update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: golang: net/http/httputil: panic due to racy read of persistConn after handler panic CVE-2021-36221 cri-o: memory exhaustion on the node when access to the kube api...

7.5CVSS8.8AI score0.03931EPSS
Exploits2References53
Tenable Nessus
Tenable Nessus
added 2022/11/08 12:0 a.m.156 views

RHEL 8 : container-tools:rhel8 (RHSA-2022:7457)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:7457 advisory. The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: golang:...

7.8CVSS7.5AI score0.03931EPSS
Exploits2References62
RedHat Linux
RedHat Linux
added 2022/06/09 2:3 a.m.96 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.5 security updates, images, and bug fixes

Red Hat Advanced Cluster Management for Kubernetes 2.5.0 is now generally available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.1AI score0.70561EPSS
Exploits10References216
OpenVAS
OpenVAS
added 2022/06/01 12:0 a.m.27 views

Fedora: Security Advisory for golang-github-opencontainers-runc (FEDORA-2022-d1f55f8fd0)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.9AI score0.00386EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/05/31 12:0 a.m.25 views

Fedora: Security Advisory for golang-github-opencontainers-runc (FEDORA-2022-e980dc71b1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.9AI score0.00386EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/05/31 12:0 a.m.26 views

Fedora: Security Advisory for golang-github-opencontainers-runc (FEDORA-2022-91b747a0d7)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.9AI score0.00386EPSS
Exploits0References2
Fedora
Fedora
added 2022/05/30 5:57 a.m.47 views

[SECURITY] Fedora 34 Update: golang-github-opencontainers-runc-1.1.2-1.fc34

Runc is a CLI tool for spawning and running containers according to the OCI specification...

7.8CVSS7AI score0.00386EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2022/05/24 5:36 p.m.46 views

Default inheritable capabilities for linux container should be empty

Impact A bug was found in runc where runc exec --cap executed processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling programs with inheritable file capabilities to elevate those capabilities to the permitted set during execve2. This bu...

7.8CVSS7.6AI score0.00386EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2022/05/24 5:36 p.m.70 views

GHSA-F3FP-GC8G-VW66 Default inheritable capabilities for linux container should be empty

Impact A bug was found in runc where runc exec --cap executed processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling programs with inheritable file capabilities to elevate those capabilities to the permitted set during execve2. This bu...

5.9CVSS7AI score0.00386EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2022/05/23 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2022-0192)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.00386EPSS
Exploits0References5
OSV
OSV
added 2022/05/21 8:50 a.m.6 views

MGASA-2022-0192 Updated opencontainers-runc packages fix security vulnerability

A bug was found in runc where runc exec --cap executed processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling programs with inheritable file capabilities to elevate those capabilities to the permitted set during execve2. This bug did n...

7.8CVSS7.8AI score0.00386EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/04/21 2:42 a.m.113 views

Moderate: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.4.3 security updates and bug fixes

Red Hat Advanced Cluster Management for Kubernetes 2.4.3 General Availability release images. This update provides security fixes, bug fixes, and updates the container images. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring...

9.8CVSS7.1AI score0.70561EPSS
Exploits9References28
RedHat Linux
RedHat Linux
added 2022/03/10 2:59 p.m.140 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.10.3 bug fix and security update

Red Hat OpenShift Container Platform release 4.10.3 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.10. Red Hat Product Security has rated this update as having a...

7.5CVSS6.7AI score0.09149EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2022/02/15 1:17 a.m.43 views

Improper input validation in umoci

Impact umoci 0.4.6 and earlier can be tricked into modifying host files by creating a malicious layer that has a symlink with the name "." or "/". Because umoci deletes inodes if they change types, this results in the rootfs directory being replaced with an attacker-controlled symlink. Subsequent...

5.5CVSS5.5AI score0.00344EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2018-0398)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.3AI score0.0247EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2020-0103)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS7.3AI score0.00457EPSS
Exploits0References4
Rows per page
Query Builder