VYPR

rpm package

suse/podman&distro=SUSE Linux Enterprise Module for Containers 15 SP2

pkg:rpm/suse/podman&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP2

Vulnerabilities (2)

  • CVE-2020-14370Sep 23, 2020
    affected < 2.1.1-4.28.1fixed 2.1.1-4.28.1

    An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink API or the Docker-compatible REST API, if multiple containers are created in a short duration, the environment variables from the first container wil

  • CVE-2020-1726Feb 11, 2020
    affected < 2.0.6-4.25.1fixed 2.0.6-4.25.1

    A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they are mounted as read-only. When a user runs a malicious container or a container based on a malicious image with an attached volume that is used