rpm package

suse/umoci&distro=SUSE Linux Enterprise Module for Containers 15 SP2

pkg:rpm/suse/umoci&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP2

Vulnerabilities (1)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2021-29136		—		< 0.4.6-3.9.1	0.4.6-3.9.1	Apr 6, 2021	Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal when "umoci unpack" or "umoci raw unpack" is used.

CVE-2021-29136Apr 6, 2021
affected < 0.4.6-3.9.1fixed 0.4.6-3.9.1
Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal when "umoci unpack" or "umoci raw unpack" is used.