243 matches found
Fission builder accepts arbitrary buildcmd strings from Environment.spec.builder.command, allowing the builder pod to invoke arbitrary executables
Summary Before the round-1 security sweep, pkg/builder/builder.go passed Environment.spec.builder.command directly into exec.Command... after a strings.Fields split, with no validation of the executable path or its arguments. A user who could create or update Environment CRDs in a namespace...
PT-2026-42605
Summary Before the round-1 security sweep, pkg/builder/builder.go passed Environment.spec.builder.command directly into exec.Command... after a strings.Fields split, with no validation of the executable path or its arguments. A user who could create or update Environment CRDs in a namespace...
EUVD-2022-29365
Malicious code in bioql PyPI...
EUVD-2022-31334
Malicious code in bioql PyPI...
EUVD-2022-29418
Malicious code in bioql PyPI...
EUVD-2022-33560
Malicious code in bioql PyPI...
EUVD-2022-33559
Malicious code in bioql PyPI...
EUVD-2022-33530
Malicious code in bioql PyPI...
EUVD-2022-33533
Malicious code in bioql PyPI...
EUVD-2022-33544
Malicious code in bioql PyPI...
EUVD-2022-33548
Malicious code in bioql PyPI...
EUVD-2022-33545
Malicious code in bioql PyPI...
EUVD-2022-33532
Malicious code in bioql PyPI...
runc 安全漏洞
runc is an Open Container Initiative open source CLI Command Line Interface tool for generating and running containers according to the OCI specification. A security vulnerability exists in runc version 1.1.13 and earlier and version 1.2.0-rc2 and earlier, which stems from a contention condition ...
runc: volume mount race condition (regression of CVE-2019-19921)
A flaw was found in runc. An attacker who controls the container image for two containers that share a volume can race volume mounts during container initialization by adding a symlink to the rootfs that points to a directory on the volume...
runc: volume mount race condition (regression of CVE-2019-19921)
A flaw was found in runc. An attacker who controls the container image for two containers that share a volume can race volume mounts during container initialization by adding a symlink to the rootfs that points to a directory on the volume...
runc: volume mount race condition (regression of CVE-2019-19921)
A flaw was found in runc. An attacker who controls the container image for two containers that share a volume can race volume mounts during container initialization by adding a symlink to the rootfs that points to a directory on the volume...
July 12, 2022—KB5015877 (Security-only update)
July 12, 2022—KB5015877 Security-only update Summary Learn more about this security-only update, including improvements, any known issues, and how to get the update. REMINDER Windows 8.1 will reach end of support on January 10, 2023, at which point technical assistance and software updates will n...
June 14, 2022—KB5014741 (Security-only update)
June 14, 2022—KB5014741 Security-only update Summary Learn more about this security-only update, including improvements, any known issues, and how to get the update. IMPORTANT On May 19, 2022, we released an out-of-band OOB update to address an issue that might cause machine certificate...
June 14, 2022—KB5014747 (Monthly Rollup)
June 14, 2022—KB5014747 Monthly Rollup Summary Learn more about this cumulative security update, including improvements, any known issues, and how to get the update. IMPORTANT On May 19, 2022, we released an out-of-band OOB update to address an issue that might cause machine certificate...