Lucene search
K

185 matches found

OSV
OSV
added 2023/03/29 7:15 p.m.2 views

DEBIAN-CVE-2023-25809

runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes /sys/fs/cgroup writable in following conditons: 1. when runc is executed inside the user namespace, and the config.json does not specify the cgroup...

6.3CVSS6.5AI score0.00327EPSS
Exploits1References1
Prion
Prion
added 2023/03/29 7:15 p.m.29 views

Design/Logic Flaw

runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes /sys/fs/cgroup writable in following conditons: 1. when runc is executed inside the user namespace, and the config.json does not specify the cgroup...

4.3CVSS6.8AI score0.00327EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/03/29 7:15 p.m.2 views

UBUNTU-CVE-2023-25809

runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes /sys/fs/cgroup writable in following conditons: 1. when runc is executed inside the user namespace, and the config.json does not specify the cgroup...

6.3CVSS6.8AI score0.00327EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2023/03/29 6:22 p.m.3 views

CVE-2023-25809 rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc

runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes /sys/fs/cgroup writable in following conditons: 1. when runc is executed inside the user namespace, and the config.json does not specify the cgroup...

5CVSS7AI score0.00327EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/03/29 6:22 p.m.34 views

CVE-2023-25809 rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc

runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes /sys/fs/cgroup writable in following conditons: 1. when runc is executed inside the user namespace, and the config.json does not specify the cgroup...

5CVSS7.2AI score0.00327EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/03/10 12:0 a.m.57 views

SUSE SLED15 / SLES15 Security Update : conmon, libcontainers-common, libseccomp, podman (SUSE-SU-2022:23018-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:23018-1 advisory. - An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink...

7.1CVSS6.6AI score0.02209EPSS
Exploits4References23
SUSE CVE
SUSE CVE
added 2023/02/15 3:47 a.m.5 views

SUSE CVE-2021-20199

Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 including from remote hosts. This impacts containerized applications that trust localhost 127.0.01 connections by default and do not require authentication. This issue affects Podman 1.8.0 onwards...

3.7CVSS6.9AI score0.01105EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2023/02/14 12:0 a.m.39 views

SUSE SLES15 Security Update : podman (SUSE-SU-2023:0326-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0326-1 advisory. podman was updated to version 4.3.1: 4.3.1: Bugfixes - Fixed a deadlock between the podman ps and podman container inspect commands...

7.5CVSS6.5AI score0.02085EPSS
Exploits3References20
Tenable Nessus
Tenable Nessus
added 2023/01/28 12:0 a.m.2276 views

SUSE SLES15 / openSUSE 15 Security Update : podman (SUSE-SU-2023:0187-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0187-1 advisory. podman was updated to version 4.3.1: 4.3.1: Bugfixes - Fixed a deadlock between the podman ps and podman container...

7.5CVSS6.5AI score0.02085EPSS
Exploits3References20
Tenable Nessus
Tenable Nessus
added 2022/11/22 12:0 a.m.61 views

Oracle Linux 9 : podman (ELSA-2022-7954)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-7954 advisory. 2:4.2.0-3.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.2.0-3 - fix dependency in test subpackage - Related:...

7.5CVSS7.3AI score0.07032EPSS
Exploits7References9
Tenable Nessus
Tenable Nessus
added 2022/11/19 12:0 a.m.41 views

AlmaLinux 9 : podman (ALSA-2022:7954)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:7954 advisory. - In x/text in Go 1.15.4, an index out of range panic occurs in language.ParseAcceptLanguage while parsing the -u- extension. x/text/language is supposed ...

7.5CVSS7.5AI score0.07032EPSS
Exploits7References9
RedHat Linux
RedHat Linux
added 2022/11/15 1:20 p.m.3 views

podman: Remote traffic to rootless containers is seen as orginating from localhost

A flaw was found in podman. Rootless containers receive all traffic with a source IP address of 127.0.0.1 including from remote hosts which impact containerized applications that trust localhost 127.0.01 connections by default and do not require authentication. The highest threat from this...

5.9CVSS7.2AI score0.01105EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/09/20 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2022:3312-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.4AI score0.02209EPSS
Exploits3References13
Rockylinux
Rockylinux
added 2022/08/09 9:36 a.m.20 views

fuse-overlayfs bug fix and enhancement update

An update is available for fuse-overlayfs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The fuse-overlayfs package provides an overlayfs FUSE implementation,...

2.5AI score
Exploits0
OpenVAS
OpenVAS
added 2022/07/31 12:0 a.m.9 views

Fedora: Security Advisory for golang-github-containerd-fuse-overlayfs-snapshotter (FEDORA-2022-5ef0bd9a27)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2022/07/18 12:0 a.m.21 views

Fedora: Security Advisory for golang-github-containerd-fuse-overlayfs-snapshotter (FEDORA-2022-3969b64d4b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.9AI score0.05994EPSS
Exploits4References2
Fedora
Fedora
added 2022/07/04 1:35 a.m.31 views

[SECURITY] Fedora 36 Update: golang-github-containerd-fuse-overlayfs-snapshotter-1.0.2-7.fc36

Fuse-overlayfs plugin for rootless containerd...

9.3CVSS8.3AI score0.05994EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2022/03/05 12:0 a.m.89 views

openSUSE 15 Security Update : conmon, libcontainers-common, libseccomp, podman (openSUSE-SU-2022:23018-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:23018-1 advisory. - An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink API o...

7.1CVSS6.6AI score0.02209EPSS
Exploits4References23
OSV
OSV
added 2022/02/25 12:54 p.m.14 views

SUSE-SU-2022:23018-1 Security update for conmon, libcontainers-common, libseccomp, podman

This update for conmon, libcontainers-common, libseccomp, podman fixes the following issues: podman was updated to 3.4.4. Security issues fixed: - fix CVE-2021-41190 bsc1193273, opencontainers: OCI manifest and index parsing confusion - fix CVE-2021-4024 bsc1193166, podman machine spawns gvproxy...

7.1CVSS6.5AI score0.02209EPSS
Exploits4References16
Fedora
Fedora
added 2022/02/24 11:27 p.m.12 views

[SECURITY] Fedora 34 Update: xpra-4.3.2-1.fc34

Xpra is "screen for X": it allows you to run X programs, usually on a remote host, direct their display to your local machine, and then to disconnect from these programs and reconnect from the same or another machine, without losing any state. It gives you remote access to individual applications...

7.4AI score
Exploits0
Rows per page
Query Builder