VYPR

rpm package

suse/conmon&distro=SUSE Linux Enterprise Module for Containers 15 SP1

pkg:rpm/suse/conmon&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP1

Vulnerabilities (2)

  • CVE-2020-1726Feb 11, 2020
    affected < 2.0.20-3.6.1fixed 2.0.20-3.6.1

    A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they are mounted as read-only. When a user runs a malicious container or a container based on a malicious image with an attached volume that is used

  • CVE-2019-18466Oct 28, 2019
    affected < 2.0.10-3.3.1fixed 2.0.10-3.3.1

    An issue was discovered in Podman in libpod before 1.6.0. It resolves a symlink in the host context during a copy operation from the container to the host, because an undesired glob operation occurs. An attacker could create a container image containing particular symlinks that,