[ALSA-2024:0121] container-tools:4.0 security update
Severity
Moderate
Affected Packages
63
CVEs
9
container-tools:4.0 security update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
Security Fix(es):
- golang: archive/tar: unbounded memory consumption when reading headers (CVE-2022-2879)
- golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters (CVE-2022-2880)
- golang: net/http: handle server errors after sending GOAWAY (CVE-2022-27664)
- golang: regexp/syntax: limit memory used by parsing regexps (CVE-2022-41715)
- golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)
- golang: html/template: improper handling of HTML-like comments within script contexts (CVE-2023-39318)
- golang: html/template: improper handling of special tags within script contexts (CVE-2023-39319)
- golang: crypto/tls: panic when processing post-handshake message on QUIC connections (CVE-2023-39321)
- golang: crypto/tls: lack of a limit on buffered post-handshake (CVE-2023-39322)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- ID
- ALSA-2024:0121
- Severity
- moderate
- URL
- https://errata.almalinux.org/ALSA-2024:0121.html
- Published
-
2024-01-10T00:00:00
(8 months ago) - Modified
-
2024-01-16T17:09:36
(8 months ago) - Rights
- Copyright 2024 AlmaLinux OS
- Other Advisories
-
- ALAS-2022-1635
- ALAS-2023-1825
- ALAS-2023-1848
- ALAS-2023-1849
- ALAS2-2022-1851
- ALAS2-2022-1858
- ALAS2-2022-1859
- ALAS2-2022-1860
- ALAS2-2022-1861
- ALAS2-2022-1862
- ALAS2-2022-1863
- ALAS2-2022-1864
- ALAS2-2022-1865
- ALAS2-2022-1887
- ALAS2-2023-1913
- ALAS2-2023-2015
- ALAS2-2023-2208
- ALAS2-2023-2209
- ALAS2-2023-2210
- ALAS2-2023-2211
- ALAS2-2023-2229
- ALAS2-2023-2238
- ALAS2-2023-2303
- ALAS2-2023-2313
- ALPINE:CVE-2022-27664
- ALPINE:CVE-2022-2879
- ALPINE:CVE-2022-2880
- ALPINE:CVE-2022-41715
- ALPINE:CVE-2023-29409
- ALPINE:CVE-2023-39318
- ALPINE:CVE-2023-39319
- ALPINE:CVE-2023-39321
- ALPINE:CVE-2023-39322
- ALSA-2022:7129
- ALSA-2023:0328
- ALSA-2023:0446
- ALSA-2023:2167
- ALSA-2023:2177
- ALSA-2023:2193
- ALSA-2023:2204
- ALSA-2023:2236
- ALSA-2023:2357
- ALSA-2023:2758
- ALSA-2023:2780
- ALSA-2023:2784
- ALSA-2023:2785
- ALSA-2023:2802
- ALSA-2023:2866
- ALSA-2023:5738
- ALSA-2023:7762
- ALSA-2023:7763
- ALSA-2023:7764
- ALSA-2023:7765
- ALSA-2023:7766
- ALSA-2024:2160
- ALSA-2024:3254
- ELSA-2022-24267
- ELSA-2022-7129
- ELSA-2023-0328
- ELSA-2023-0446
- ELSA-2023-18908
- ELSA-2023-2167
- ELSA-2023-2177
- ELSA-2023-2204
- ELSA-2023-2357
- ELSA-2023-2592
- ELSA-2023-2758
- ELSA-2023-2780
- ELSA-2023-2784
- ELSA-2023-2785
- ELSA-2023-2802
- ELSA-2023-2866
- ELSA-2023-5738
- ELSA-2023-7762
- ELSA-2023-7763
- ELSA-2023-7764
- ELSA-2023-7765
- ELSA-2023-7766
- ELSA-2024-0121
- ELSA-2024-2988
- ELSA-2024-3254
- FEDORA-2022-0e313cc582
- FEDORA-2022-45097317b4
- FEDORA-2022-59a20edab2
- FEDORA-2022-67ec8c61d0
- FREEBSD:6FEA7103-2EA4-11ED-B403-3DAE8AC60D3E
- FREEBSD:854C2AFB-4424-11ED-AF97-ADCABF310F9B
- FREEBSD:BEB36F39-4D74-11EE-985E-BFF341E78D94
- GLSA-202209-26
- GLSA-202311-09
- GO-2022-0969
- GO-2022-1037
- GO-2022-1038
- GO-2022-1039
- GO-2023-1987
- GO-2023-2041
- GO-2023-2043
- GO-2023-2044
- GO-2023-2045
- MS:CVE-2022-27664
- openSUSE-SU-2023:0360-1
- RHBA-2023:6364
- RHBA-2023:6928
- RHSA-2022:7129
- RHSA-2023:0328
- RHSA-2023:0446
- RHSA-2023:2167
- RHSA-2023:2177
- RHSA-2023:2193
- RHSA-2023:2204
- RHSA-2023:2236
- RHSA-2023:2357
- RHSA-2023:2592
- RHSA-2023:2758
- RHSA-2023:2780
- RHSA-2023:2784
- RHSA-2023:2785
- RHSA-2023:2802
- RHSA-2023:2866
- RHSA-2023:5721
- RHSA-2023:5738
- RHSA-2023:7762
- RHSA-2023:7763
- RHSA-2023:7764
- RHSA-2023:7765
- RHSA-2023:7766
- RHSA-2024:0121
- RHSA-2024:2160
- RHSA-2024:2988
- RHSA-2024:3254
- RLSA-2022:7129
- RLSA-2023:0328
- RLSA-2023:0446
- SUSE-SU-2022:3325-1
- SUSE-SU-2022:3326-1
- SUSE-SU-2022:3668-1
- SUSE-SU-2022:3669-1
- SUSE-SU-2023:2182-1
- SUSE-SU-2023:2183-1
- SUSE-SU-2023:2185-1
- SUSE-SU-2023:2187-1
- SUSE-SU-2023:2312-1
- SUSE-SU-2023:2575-1
- SUSE-SU-2023:2578-1
- SUSE-SU-2023:2579-1
- SUSE-SU-2023:2598-1
- SUSE-SU-2023:3181-1
- SUSE-SU-2023:3263-1
- SUSE-SU-2023:3474-1
- SUSE-SU-2023:3700-1
- SUSE-SU-2023:3701-1
- SUSE-SU-2023:3840-1
- SUSE-SU-2023:3841-1
- SUSE-SU-2023:3861-1
- SUSE-SU-2023:3867-1
- SUSE-SU-2023:3868-1
- SUSE-SU-2023:3875-1
- SUSE-SU-2023:3885-1
- SUSE-SU-2023:3886-1
- SUSE-SU-2023:3888-1
- SUSE-SU-2023:4469-1
- SUSE-SU-2024:0191-1
- SUSE-SU-2024:0196-1
- SUSE-SU-2024:0486-1
- SUSE-SU-2024:0487-1
- USN-6038-1
- USN-6038-2
- USN-6574-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/almalinux/udica?arch=noarch&distro=almalinux-8.9 | almalinux | udica | < 0.2.6-4.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | noarch | |
Affected | pkg:rpm/almalinux/toolbox?arch=x86_64&distro=almalinux-8.9 | almalinux | toolbox | < 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/toolbox?arch=aarch64&distro=almalinux-8.9 | almalinux | toolbox | < 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/toolbox-tests?arch=x86_64&distro=almalinux-8.9 | almalinux | toolbox-tests | < 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/toolbox-tests?arch=aarch64&distro=almalinux-8.9 | almalinux | toolbox-tests | < 0.0.99.4-5.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/slirp4netns?arch=x86_64&distro=almalinux-8.9 | almalinux | slirp4netns | < 1.1.8-3.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/slirp4netns?arch=aarch64&distro=almalinux-8.9 | almalinux | slirp4netns | < 1.1.8-3.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/skopeo?arch=x86_64&distro=almalinux-8.9 | almalinux | skopeo | < 1.6.2-9.module_el8.9.0+3687+dcd7ef8f.alma.1 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/skopeo?arch=aarch64&distro=almalinux-8.9 | almalinux | skopeo | < 1.6.2-9.module_el8.9.0+3687+dcd7ef8f.alma.1 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/skopeo-tests?arch=x86_64&distro=almalinux-8.9 | almalinux | skopeo-tests | < 1.6.2-9.module_el8.9.0+3687+dcd7ef8f.alma.1 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/skopeo-tests?arch=aarch64&distro=almalinux-8.9 | almalinux | skopeo-tests | < 1.6.2-9.module_el8.9.0+3687+dcd7ef8f.alma.1 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/runc?arch=x86_64&distro=almalinux-8.9 | almalinux | runc | < 1.1.5-2.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/runc?arch=aarch64&distro=almalinux-8.9 | almalinux | runc | < 1.1.5-2.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/python3-podman?arch=noarch&distro=almalinux-8.9 | almalinux | python3-podman | < 4.0.0-2.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | noarch | |
Affected | pkg:rpm/almalinux/python3-criu?arch=x86_64&distro=almalinux-8.6 | almalinux | python3-criu | < 3.15-3.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | x86_64 | |
Affected | pkg:rpm/almalinux/python3-criu?arch=aarch64&distro=almalinux-8.6 | almalinux | python3-criu | < 3.15-3.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | aarch64 | |
Affected | pkg:rpm/almalinux/podman?arch=x86_64&distro=almalinux-8.9 | almalinux | podman | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/podman?arch=aarch64&distro=almalinux-8.9 | almalinux | podman | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/podman-tests?arch=x86_64&distro=almalinux-8.9 | almalinux | podman-tests | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/podman-tests?arch=aarch64&distro=almalinux-8.9 | almalinux | podman-tests | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/podman-remote?arch=x86_64&distro=almalinux-8.9 | almalinux | podman-remote | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/podman-remote?arch=aarch64&distro=almalinux-8.9 | almalinux | podman-remote | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/podman-plugins?arch=x86_64&distro=almalinux-8.9 | almalinux | podman-plugins | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/podman-plugins?arch=aarch64&distro=almalinux-8.9 | almalinux | podman-plugins | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/podman-gvproxy?arch=x86_64&distro=almalinux-8.9 | almalinux | podman-gvproxy | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/podman-gvproxy?arch=aarch64&distro=almalinux-8.9 | almalinux | podman-gvproxy | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/podman-docker?arch=noarch&distro=almalinux-8.9 | almalinux | podman-docker | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | noarch | |
Affected | pkg:rpm/almalinux/podman-catatonit?arch=x86_64&distro=almalinux-8.9 | almalinux | podman-catatonit | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/podman-catatonit?arch=aarch64&distro=almalinux-8.9 | almalinux | podman-catatonit | < 4.0.2-25.module_el8.9.0+3711+04fcca5e.alma.1 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/oci-seccomp-bpf-hook?arch=x86_64&distro=almalinux-8.8 | almalinux | oci-seccomp-bpf-hook | < 1.2.5-2.module_el8.8.0+3468+16b86c82 | almalinux-8.8 | x86_64 | |
Affected | pkg:rpm/almalinux/oci-seccomp-bpf-hook?arch=aarch64&distro=almalinux-8.8 | almalinux | oci-seccomp-bpf-hook | < 1.2.5-2.module_el8.8.0+3468+16b86c82 | almalinux-8.8 | aarch64 | |
Affected | pkg:rpm/almalinux/netavark?arch=x86_64&distro=almalinux-8.9 | almalinux | netavark | < 1.0.1-38.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/netavark?arch=aarch64&distro=almalinux-8.9 | almalinux | netavark | < 1.0.1-38.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/libslirp?arch=x86_64&distro=almalinux-8.6 | almalinux | libslirp | < 4.4.0-1.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | x86_64 | |
Affected | pkg:rpm/almalinux/libslirp?arch=aarch64&distro=almalinux-8.6 | almalinux | libslirp | < 4.4.0-1.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | aarch64 | |
Affected | pkg:rpm/almalinux/libslirp-devel?arch=x86_64&distro=almalinux-8.6 | almalinux | libslirp-devel | < 4.4.0-1.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | x86_64 | |
Affected | pkg:rpm/almalinux/libslirp-devel?arch=aarch64&distro=almalinux-8.6 | almalinux | libslirp-devel | < 4.4.0-1.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | aarch64 | |
Affected | pkg:rpm/almalinux/fuse-overlayfs?arch=x86_64&distro=almalinux-8.9 | almalinux | fuse-overlayfs | < 1.9-2.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/fuse-overlayfs?arch=aarch64&distro=almalinux-8.9 | almalinux | fuse-overlayfs | < 1.9-2.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/crun?arch=x86_64&distro=almalinux-8.9 | almalinux | crun | < 1.8.7-1.module_el8.9.0+3683+33eb0feb | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/crun?arch=aarch64&distro=almalinux-8.9 | almalinux | crun | < 1.8.7-1.module_el8.9.0+3683+33eb0feb | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/criu?arch=x86_64&distro=almalinux-8.6 | almalinux | criu | < 3.15-3.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | x86_64 | |
Affected | pkg:rpm/almalinux/criu?arch=aarch64&distro=almalinux-8.6 | almalinux | criu | < 3.15-3.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | aarch64 | |
Affected | pkg:rpm/almalinux/criu-libs?arch=x86_64&distro=almalinux-8.6 | almalinux | criu-libs | < 3.15-3.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | x86_64 | |
Affected | pkg:rpm/almalinux/criu-libs?arch=aarch64&distro=almalinux-8.6 | almalinux | criu-libs | < 3.15-3.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | aarch64 | |
Affected | pkg:rpm/almalinux/criu-devel?arch=x86_64&distro=almalinux-8.6 | almalinux | criu-devel | < 3.15-3.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | x86_64 | |
Affected | pkg:rpm/almalinux/criu-devel?arch=aarch64&distro=almalinux-8.6 | almalinux | criu-devel | < 3.15-3.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | aarch64 | |
Affected | pkg:rpm/almalinux/crit?arch=x86_64&distro=almalinux-8.6 | almalinux | crit | < 3.15-3.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | x86_64 | |
Affected | pkg:rpm/almalinux/crit?arch=aarch64&distro=almalinux-8.6 | almalinux | crit | < 3.15-3.module_el8.6.0+2877+8e437bf5 | almalinux-8.6 | aarch64 | |
Affected | pkg:rpm/almalinux/containers-common?arch=x86_64&distro=almalinux-8.9 | almalinux | containers-common | < 1-38.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/containers-common?arch=aarch64&distro=almalinux-8.9 | almalinux | containers-common | < 1-38.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/containernetworking-plugins?arch=x86_64&distro=almalinux-8.9 | almalinux | containernetworking-plugins | < 1.1.1-6.module_el8.9.0+3711+04fcca5e | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/containernetworking-plugins?arch=aarch64&distro=almalinux-8.9 | almalinux | containernetworking-plugins | < 1.1.1-6.module_el8.9.0+3711+04fcca5e | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/container-selinux?arch=noarch&distro=almalinux-8.9 | almalinux | container-selinux | < 2.205.0-3.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | noarch | |
Affected | pkg:rpm/almalinux/conmon?arch=x86_64&distro=almalinux-8.9 | almalinux | conmon | < 2.1.4-2.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/conmon?arch=aarch64&distro=almalinux-8.9 | almalinux | conmon | < 2.1.4-2.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/cockpit-podman?arch=noarch&distro=almalinux-8.7 | almalinux | cockpit-podman | < 46-1.module_el8.7.0+3344+5bcd850f | almalinux-8.7 | noarch | |
Affected | pkg:rpm/almalinux/buildah?arch=x86_64&distro=almalinux-8.9 | almalinux | buildah | < 1.24.6-7.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/buildah?arch=aarch64&distro=almalinux-8.9 | almalinux | buildah | < 1.24.6-7.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/buildah-tests?arch=x86_64&distro=almalinux-8.9 | almalinux | buildah-tests | < 1.24.6-7.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/buildah-tests?arch=aarch64&distro=almalinux-8.9 | almalinux | buildah-tests | < 1.24.6-7.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 | |
Affected | pkg:rpm/almalinux/aardvark-dns?arch=x86_64&distro=almalinux-8.9 | almalinux | aardvark-dns | < 1.0.1-38.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | x86_64 | |
Affected | pkg:rpm/almalinux/aardvark-dns?arch=aarch64&distro=almalinux-8.9 | almalinux | aardvark-dns | < 1.0.1-38.module_el8.9.0+3627+db8ec155 | almalinux-8.9 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |