VYPR

rpm package

almalinux/buildah

pkg:rpm/almalinux/buildah

Vulnerabilities (106)

  • CVE-2023-24537HigApr 6, 2023
    affected < 1:1.24.6-7.module_el8.9.0+3627+db8ec155fixed 1:1.24.6-7.module_el8.9.0+3627+db8ec155

    Calling any of the Parse functions on Go source code which contains //line directives with very large line numbers can cause an infinite loop due to integer overflow.

  • CVE-2023-24536HigApr 6, 2023
    affected < 1:1.31.3-1.el9fixed 1:1.31.3-1.el9

    Multipart form parsing can consume large amounts of CPU and memory when processing form inputs containing very large numbers of parts. This stems from several causes: 1. mime/multipart.Reader.ReadForm limits the total memory a parsed multipart form can consume. ReadForm can under

  • CVE-2023-24534HigApr 6, 2023
    affected < 1:1.31.3-1.el9fixed 1:1.31.3-1.el9

    HTTP and MIME header parsing can allocate large amounts of memory, even when parsing small inputs, potentially leading to a denial of service. Certain unusual patterns of input data can cause the common function used to parse HTTP and MIME headers to allocate substantially more m

  • CVE-2023-28642MedMar 29, 2023
    affected < 1:1.24.6-7.module_el8.9.0+3627+db8ec155fixed 1:1.24.6-7.module_el8.9.0+3627+db8ec155

    runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when `/proc` inside the container is symlinked with a specific mount configuration. This issue has been fixed in runc version 1.1.5, by prohibitin

  • CVE-2023-25809MedMar 29, 2023
    affected < 1:1.24.6-7.module_el8.9.0+3627+db8ec155fixed 1:1.24.6-7.module_el8.9.0+3627+db8ec155

    runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes `/sys/fs/cgroup` writable in following conditons: 1. when runc is executed inside the user namespace, and the `config.json` does n

  • CVE-2023-0778MedMar 27, 2023
    affected < 1:1.29.1-1.module_el8.8.0+3470+252b1910fixed 1:1.29.1-1.module_el8.8.0+3470+252b1910

    A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system.

  • CVE-2023-27561HigMar 3, 2023
    affected < 1:1.24.6-7.module_el8.9.0+3627+db8ec155fixed 1:1.24.6-7.module_el8.9.0+3627+db8ec155

    runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. NOTE: this is

  • CVE-2022-41725HigFeb 28, 2023
    affected < 1:1.31.3-1.el9fixed 1:1.31.3-1.el9

    A denial of service is possible from excessive resource consumption in net/http and mime/multipart. Multipart form parsing with mime/multipart.Reader.ReadForm can consume largely unlimited amounts of memory and disk files. This also affects form parsing in the net/http package wi

  • CVE-2022-41724HigFeb 28, 2023
    affected < 1:1.31.3-1.el9fixed 1:1.31.3-1.el9

    Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly

  • CVE-2022-41723HigFeb 28, 2023
    affected < 1:1.31.3-1.el9fixed 1:1.31.3-1.el9

    A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.

  • CVE-2023-25173MedFeb 16, 2023
    affected < 1:1.31.3-1.el9fixed 1:1.31.3-1.el9

    containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group acces

  • CVE-2022-3064HigDec 27, 2022
    affected < 1:1.24.6-7.module_el8.9.0+3627+db8ec155fixed 1:1.24.6-7.module_el8.9.0+3627+db8ec155

    Parsing malicious or large YAML documents can consume excessive amounts of CPU or memory.

  • CVE-2022-41717MedDec 8, 2022
    affected < 1:1.29.1-1.el9fixed 1:1.29.1-1.el9

    An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the s

  • CVE-2022-41715HigOct 14, 2022
    affected < 1:1.24.6-7.module_el8.9.0+3627+db8ec155fixed 1:1.24.6-7.module_el8.9.0+3627+db8ec155

    Programs which compile regular expressions from untrusted sources may be vulnerable to memory exhaustion or denial of service. The parsed regexp representation is linear in the size of the input, but in some cases the constant factor can be as high as 40,000, making relatively sm

  • CVE-2022-2880HigOct 14, 2022
    affected < 1:1.24.6-7.module_el8.9.0+3627+db8ec155fixed 1:1.24.6-7.module_el8.9.0+3627+db8ec155

    Requests forwarded by ReverseProxy include the raw query parameters from the inbound request, including unparsable parameters rejected by net/http. This could permit query parameter smuggling when a Go proxy forwards a parameter with an unparsable value. After fix, ReverseProxy s

  • CVE-2022-2879HigOct 14, 2022
    affected < 1:1.24.6-7.module_el8.9.0+3627+db8ec155fixed 1:1.24.6-7.module_el8.9.0+3627+db8ec155

    Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum size of header blocks to 1 Mi

  • CVE-2022-2990HigSep 13, 2022
    affected < 1:1.27.2-2.module_el8.7.0+3348+f3135399fixed 1:1.27.2-2.module_el8.7.0+3348+f3135399

    An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissi

  • CVE-2022-2989HigSep 13, 2022
    affected < 1:1.27.2-2.module_el8.7.0+3348+f3135399fixed 1:1.27.2-2.module_el8.7.0+3348+f3135399

    An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissio

  • CVE-2022-27664HigSep 6, 2022
    affected < 1:1.29.1-1.module_el8.8.0+3470+252b1910fixed 1:1.29.1-1.module_el8.8.0+3470+252b1910

    In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.

  • CVE-2022-32189HigAug 10, 2022
    affected < 1:1.29.1-1.module_el8.8.0+3470+252b1910fixed 1:1.29.1-1.module_el8.8.0+3470+252b1910

    A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and 1.18.5, potentially allowing a denial of service.

Page 4 of 6