EUVD-2016-7272

Malware in sbrugna...

RHEL 7 : systemd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - systemd: Mishandled symlinks in systemd-tmpfiles allows local users to obtain ownership of arbitrary file...

RHEL 7 : runc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - runc: Execution of malicious containers allows for container escape and access to host filesystem...

[SECURITY] Fedora 36 Update: cadvisor-0.44.1-4.fc36

cAdvisor Container Advisor provides container users an understanding of the resource usage and performance characteristics of their running containers. It is a running daemon that collects, aggregates, processes, and exports information about running containers. Specifically, for each container i...

[SECURITY] Fedora 35 Update: cadvisor-0.44.1-3.fc35

cAdvisor Container Advisor provides container users an understanding of the resource usage and performance characteristics of their running containers. It is a running daemon that collects, aggregates, processes, and exports information about running containers. Specifically, for each container i...

[SECURITY] Fedora 36 Update: cadvisor-0.44.1-3.fc36

cAdvisor Container Advisor provides container users an understanding of the resource usage and performance characteristics of their running containers. It is a running daemon that collects, aggregates, processes, and exports information about running containers. Specifically, for each container i...

Fedora: Security Advisory for golang-github-opencontainers-runc (FEDORA-2022-91b747a0d7)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

How to Discover Log4Shell Vulnerabilities in Running Containers & Images

If you run Java applications in containers, then it is critical that you check for Log4Shell vulnerabilities, given the high severity of this potential exploit. Qualys Container Security offers multiple methods to help you detect Log4Shell in your container environment. The Container Security...

Weaponizing AWS ECS Task Definitionsto Steal Credentials From Running Containers

The post Weaponizing AWS ECS Task Definitions to Steal Credentials From Running Containers appeared first on Rhino Security Labs...

Product update: Virtuozzo 7.0 Update 13 (7.0.13-298)

The Update 13 for Virtuozzo 7.0 introduces new features and provides stability and usability bug fixes. It also introduces a new kernel 3.10.0-1062.12.1.vz7.131.10. Vulnerability id: PSBM-95072 'pstorage-target' files are left over after successful migrations of VMs on Virtuozzo Storage from...

Arbitrary File Read

podman is vulnerable to arbitrary file read. The vulnerability exists through an improper symlink resolution allows access to host files when executing podman cp on running containers...

podman: Improper symlink resolution allows access to host files when executing `podman cp` on running containers

A path traversal vulnerability has been discovered in podman in the way it handles symlinks inside containers. An attacker who has compromised an existing container can cause arbitrary files on the host filesystem to be read/written when an administrator tries to copy a file from/to the container...

Product update: Virtuozzo 7.0 Update 7 (7.0.7-423)

The Update 7 for Virtuozzo 7.0 provides new features as well as stability and usability bug fixes. Vulnerability id: PSBM-79872 Enabling nested virtualization for VM could fail due to a bug in libvirt. Vulnerability id: PSBM-81107 Setting IP address to a VM without guest tools returned error even...

Information Disclosure

github.com/projectatomic/oci-register-machine is vulnerable to information disclosure. The machinectl command allows local users to list what containers are running and potentially obtain sensitive information...

CVE-2016-6349

The machinectl command in oci-register-machine allows local users to list running containers and possibly obtain sensitive information by running that command...

CVE-2016-6349

The machinectl command in oci-register-machine allows local users to list running containers and possibly obtain sensitive information by running that command...

CVE-2016-6349

CVE-2016-6349 : The machinectl command in oci-register-machine allows local users to list running containers and potentially obtain sensitive information. Root cause: information exposure via machinectl. Impact in the provided docs is described as local information disclosure; no patch/remediatio...

CVE-2016-6349

The machinectl command in oci-register-machine allows local users to list running containers and possibly obtain sensitive information by running that command...