rpm package
almalinux/python3-criu
pkg:rpm/almalinux/python3-criu
Vulnerabilities (106)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-20199 | Med | 5.9 | < 3.15-1.module_el8.6.0+2876+9ed4eae2 | 3.15-1.module_el8.6.0+2876+9ed4eae2 | Feb 2, 2021 | Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 (including from remote hosts). This impacts containerized applications that trust localhost (127.0.01) connections by default and do not require authentication. This issue affects Podma | |
| CVE-2020-29652 | Hig | 7.5 | < 3.15-1.module_el8.6.0+2876+9ed4eae2 | 3.15-1.module_el8.6.0+2876+9ed4eae2 | Dec 17, 2020 | A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers. | |
| CVE-2020-14370 | Med | 5.3 | < 3.15-1.module_el8.6.0+2876+9ed4eae2 | 3.15-1.module_el8.6.0+2876+9ed4eae2 | Sep 23, 2020 | An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink API or the Docker-compatible REST API, if multiple containers are created in a short duration, the environment variables from the first container wil | |
| CVE-2020-10696 | Hig | 8.8 | < 3.12-9.module_el8.3.0+2044+12421f43 | 3.12-9.module_el8.3.0+2044+12421f43 | Mar 31, 2020 | A path traversal flaw was found in Buildah in versions before 1.14.5. This flaw allows an attacker to trick a user into building a malicious container image hosted on an HTTP(s) server and then write files to the user's system anywhere that the user has permissions. | |
| CVE-2019-19921 | Hig | 7.0 | < 3.12-9.module_el8.3.0+2044+12421f43 | 3.12-9.module_el8.3.0+2044+12421f43 | Feb 12, 2020 | runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vul | |
| CVE-2020-1726 | Med | 5.9 | < 3.12-9.module_el8.3.0+2044+12421f43 | 3.12-9.module_el8.3.0+2044+12421f43 | Feb 11, 2020 | A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they are mounted as read-only. When a user runs a malicious container or a container based on a malicious image with an attached volume that is used |
- affected < 3.15-1.module_el8.6.0+2876+9ed4eae2fixed 3.15-1.module_el8.6.0+2876+9ed4eae2
Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 (including from remote hosts). This impacts containerized applications that trust localhost (127.0.01) connections by default and do not require authentication. This issue affects Podma
- affected < 3.15-1.module_el8.6.0+2876+9ed4eae2fixed 3.15-1.module_el8.6.0+2876+9ed4eae2
A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.
- affected < 3.15-1.module_el8.6.0+2876+9ed4eae2fixed 3.15-1.module_el8.6.0+2876+9ed4eae2
An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink API or the Docker-compatible REST API, if multiple containers are created in a short duration, the environment variables from the first container wil
- affected < 3.12-9.module_el8.3.0+2044+12421f43fixed 3.12-9.module_el8.3.0+2044+12421f43
A path traversal flaw was found in Buildah in versions before 1.14.5. This flaw allows an attacker to trick a user into building a malicious container image hosted on an HTTP(s) server and then write files to the user's system anywhere that the user has permissions.
- affected < 3.12-9.module_el8.3.0+2044+12421f43fixed 3.12-9.module_el8.3.0+2044+12421f43
runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vul
- affected < 3.12-9.module_el8.3.0+2044+12421f43fixed 3.12-9.module_el8.3.0+2044+12421f43
A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they are mounted as read-only. When a user runs a malicious container or a container based on a malicious image with an attached volume that is used
Page 6 of 6