rpm package
almalinux/containernetworking-plugins
pkg:rpm/almalinux/containernetworking-plugins
Vulnerabilities (105)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-19921 | — | < 1:1.1.1-5.module_el8.9.0+3627+db8ec155 | 1:1.1.1-5.module_el8.9.0+3627+db8ec155 | Feb 12, 2020 | runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vul | ||
| CVE-2020-8608 | — | < 0.8.3-4.module_el8.5.0+2635+e4386a39 | 0.8.3-4.module_el8.5.0+2635+e4386a39 | Feb 6, 2020 | In libslirp 4.1.0, as used in QEMU 4.2.0, tcp_subr.c misuses snprintf return values, leading to a buffer overflow in later code. | ||
| CVE-2020-7039 | — | < 0.8.3-4.module_el8.5.0+2635+e4386a39 | 0.8.3-4.module_el8.5.0+2635+e4386a39 | Jan 16, 2020 | tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code. | ||
| CVE-2019-9512 | — | < 0.7.4-4.git9ebe139.module_el8.3.0+2044+12421f43 | 0.7.4-4.git9ebe139.module_el8.3.0+2044+12421f43 | Aug 13, 2019 | Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consum | ||
| CVE-2019-9514 | — | < 0.7.4-4.git9ebe139.module_el8.3.0+2044+12421f43 | 0.7.4-4.git9ebe139.module_el8.3.0+2044+12421f43 | Aug 13, 2019 | Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer |
- CVE-2019-19921Feb 12, 2020affected < 1:1.1.1-5.module_el8.9.0+3627+db8ec155fixed 1:1.1.1-5.module_el8.9.0+3627+db8ec155
runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vul
- CVE-2020-8608Feb 6, 2020affected < 0.8.3-4.module_el8.5.0+2635+e4386a39fixed 0.8.3-4.module_el8.5.0+2635+e4386a39
In libslirp 4.1.0, as used in QEMU 4.2.0, tcp_subr.c misuses snprintf return values, leading to a buffer overflow in later code.
- CVE-2020-7039Jan 16, 2020affected < 0.8.3-4.module_el8.5.0+2635+e4386a39fixed 0.8.3-4.module_el8.5.0+2635+e4386a39
tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds access which can lead to a DoS or potential execute arbitrary code.
- CVE-2019-9512Aug 13, 2019affected < 0.7.4-4.git9ebe139.module_el8.3.0+2044+12421f43fixed 0.7.4-4.git9ebe139.module_el8.3.0+2044+12421f43
Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consum
- CVE-2019-9514Aug 13, 2019affected < 0.7.4-4.git9ebe139.module_el8.3.0+2044+12421f43fixed 0.7.4-4.git9ebe139.module_el8.3.0+2044+12421f43
Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer
Page 6 of 6