7 matches found
CentOS 7 : podman (RHSA-2022:2190)
The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:2190 advisory. - A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded...
Design/Logic Flaw
The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056. This issue could possibly allow an attacker to gain access to sensitive...
CVE-2022-2739
The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056. This issue could possibly allow an attacker to gain access to sensitive...
CVE-2022-2739
The CVE-2022-2739 entry concerns Red Hat Enterprise Linux 7 Extras where an incorrect podman version released via RHSA-2022:2190 did not include the fix for CVE-2020-14370 (environment-variable leakage). Root cause: the shipped podman version omitted the established remediation, allowing potentia...
CVE-2022-2738
CVE-2022-2738 is described in connected MiracleLinux advisories as a security regression of CVE-2020-8945, caused by a source-code-management issue in podman. The affected component is podman in MiracleLinux 7 (AXSA-2022-3718:02), with explicit note that the regression impacts the Go GPGME bindin...
CVE-2022-2739
The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056. This issue could possibly allow an attacker to gain access to sensitive...
CVE-2022-2738
The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-8945, which was previously fixed via RHSA-2020:2117. This issue could possibly be used to crash or cause potential code executio...