VYPR

rpm package

almalinux/podman-plugins

pkg:rpm/almalinux/podman-plugins

Vulnerabilities (103)

  • CVE-2020-28852Jan 2, 2021
    affected < 2:4.2.0-3.el9fixed 2:4.2.0-3.el9

    In x/text in Go before v0.3.5, a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag. (x/text/language is supposed to be able to parse an HTTP Accept-Language header.)

  • CVE-2020-28851Jan 2, 2021
    affected < 2:4.2.0-3.el9fixed 2:4.2.0-3.el9

    In x/text in Go 1.15.4, an "index out of range" panic occurs in language.ParseAcceptLanguage while parsing the -u- extension. (x/text/language is supposed to be able to parse an HTTP Accept-Language header.)

  • CVE-2019-19921Feb 12, 2020
    affected < 2:4.0.2-24.module_el8.9.0+3627+db8ec155fixed 2:4.0.2-24.module_el8.9.0+3627+db8ec155

    runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vul

Page 6 of 6