[ALSA-2024:3254] container-tools:rhel8 security update
Severity
Important
Affected Packages
63
CVEs
5
container-tools:rhel8 security update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
Security Fix(es):
- buildah: full container escape at build time (CVE-2024-1753)
- golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters (CVE-2022-2880)
- golang: regexp/syntax: limit memory used by parsing regexps (CVE-2022-41715)
- golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON (CVE-2024-24786)
- jose-go: improper handling of highly compressed data (CVE-2024-28180)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- ID
- ALSA-2024:3254
- Severity
- important
- URL
- https://errata.almalinux.org/ALSA-2024:3254.html
- Published
-
2024-05-22T00:00:00
(3 months ago) - Modified
-
2024-05-29T14:49:44
(3 months ago) - Rights
- Copyright 2024 AlmaLinux OS
- Other Advisories
-
- ALAS2-2022-1887
- ALAS2-2023-1913
- ALAS2-2023-2015
- ALAS2-2024-2550
- ALAS2-2024-2568
- ALAS2-2024-2618
- ALPINE:CVE-2022-2880
- ALPINE:CVE-2022-41715
- ALPINE:CVE-2024-1753
- ALPINE:CVE-2024-24786
- ALPINE:CVE-2024-28180
- ALSA-2023:0328
- ALSA-2023:0446
- ALSA-2023:2167
- ALSA-2023:2204
- ALSA-2023:2357
- ALSA-2023:2780
- ALSA-2023:2784
- ALSA-2023:2866
- ALSA-2024:0121
- ALSA-2024:2055
- ALSA-2024:2084
- ALSA-2024:2098
- ALSA-2024:2548
- ALSA-2024:2549
- ALSA-2024:2550
- ALSA-2024:3826
- ALSA-2024:3827
- ALSA-2024:3968
- ALSA-2024:4246
- ELSA-2022-24267
- ELSA-2023-0328
- ELSA-2023-0446
- ELSA-2023-18908
- ELSA-2023-2167
- ELSA-2023-2204
- ELSA-2023-2357
- ELSA-2023-2592
- ELSA-2023-2780
- ELSA-2023-2784
- ELSA-2023-2866
- ELSA-2024-0121
- ELSA-2024-12328
- ELSA-2024-12329
- ELSA-2024-12347
- ELSA-2024-12348
- ELSA-2024-2055
- ELSA-2024-2084
- ELSA-2024-2098
- ELSA-2024-2548
- ELSA-2024-2549
- ELSA-2024-2550
- ELSA-2024-2988
- ELSA-2024-3254
- ELSA-2024-3826
- ELSA-2024-3827
- ELSA-2024-3968
- ELSA-2024-4246
- FEDORA-2022-0e313cc582
- FEDORA-2022-59a20edab2
- FEDORA-2024-22f1e313dd
- FEDORA-2024-453ee0b3b9
- FEDORA-2024-45f0a1df95
- FEDORA-2024-529fe8a802
- FEDORA-2024-560a7aca85
- FEDORA-2024-5bae6c0ea7
- FEDORA-2024-831bad8f8f
- FEDORA-2024-8409b5fa8e
- FEDORA-2024-9231308a4f
- FEDORA-2024-a267e93f8c
- FEDORA-2024-a8a4ce2864
- FEDORA-2024-c95d3199c5
- FEDORA-2024-dd32f390b3
- FREEBSD:854C2AFB-4424-11ED-AF97-ADCABF310F9B
- GLSA-202311-09
- GLSA-202407-12
- GLSA-202407-25
- GO-2022-1038
- GO-2022-1039
- GO-2024-2611
- GO-2024-2631
- GO-2024-2658
- RHSA-2023:0328
- RHSA-2023:0446
- RHSA-2023:2167
- RHSA-2023:2204
- RHSA-2023:2357
- RHSA-2023:2592
- RHSA-2023:2780
- RHSA-2023:2784
- RHSA-2023:2866
- RHSA-2024:0121
- RHSA-2024:1874
- RHSA-2024:2055
- RHSA-2024:2084
- RHSA-2024:2098
- RHSA-2024:2548
- RHSA-2024:2549
- RHSA-2024:2550
- RHSA-2024:2988
- RHSA-2024:3254
- RHSA-2024:3826
- RHSA-2024:3827
- RHSA-2024:3968
- RHSA-2024:4246
- RLSA-2023:0328
- RLSA-2023:0446
- RLSA-2024:2548
- RLSA-2024:2549
- RLSA-2024:2550
- RLSA-2024:3826
- RLSA-2024:3827
- SUSE-SU-2022:3668-1
- SUSE-SU-2022:3669-1
- SUSE-SU-2023:2182-1
- SUSE-SU-2023:2183-1
- SUSE-SU-2023:2312-1
- SUSE-SU-2023:2578-1
- SUSE-SU-2023:2579-1
- SUSE-SU-2023:2598-1
- SUSE-SU-2024:0191-1
- SUSE-SU-2024:0196-1
- SUSE-SU-2024:0486-1
- SUSE-SU-2024:0487-1
- SUSE-SU-2024:1058-1
- SUSE-SU-2024:1059-1
- SUSE-SU-2024:1142-1
- SUSE-SU-2024:1143-1
- SUSE-SU-2024:1144-1
- SUSE-SU-2024:1145-1
- SUSE-SU-2024:1146-1
- SUSE-SU-2024:1987-1
- SUSE-SU-2024:1987-2
- SUSE-SU-2024:2031-1
- SUSE-SU-2024:2050-1
- SUSE-SU-2024:2050-2
- SUSE-SU-2024:2090-1
- SUSE-SU-2024:2754-1
- SUSE-SU-2024:3094-1
- SUSE-SU-2024:3097-1
- SUSE-SU-2024:3098-1
- SUSE-SU-2024:3120-1
- USN-6038-1
- USN-6038-2
- USN-6746-1
- USN-6746-2
Source | # ID | Name | URL |
---|---|---|---|
RHSA | RHSA-2024:3254 | https://access.redhat.com/errata/RHSA-2024:3254 | |
CVE | CVE-2022-2880 | https://access.redhat.com/security/cve/CVE-2022-2880 | |
CVE | CVE-2022-41715 | https://access.redhat.com/security/cve/CVE-2022-41715 | |
CVE | CVE-2024-1753 | https://access.redhat.com/security/cve/CVE-2024-1753 | |
CVE | CVE-2024-24786 | https://access.redhat.com/security/cve/CVE-2024-24786 | |
CVE | CVE-2024-28180 | https://access.redhat.com/security/cve/CVE-2024-28180 | |
Bugzilla | 2132868 | https://bugzilla.redhat.com/2132868 | |
Bugzilla | 2132872 | https://bugzilla.redhat.com/2132872 | |
Bugzilla | 2265513 | https://bugzilla.redhat.com/2265513 | |
Bugzilla | 2268046 | https://bugzilla.redhat.com/2268046 | |
Bugzilla | 2268854 | https://bugzilla.redhat.com/2268854 | |
Self | ALSA-2024:3254 | https://errata.almalinux.org/8/ALSA-2024-3254.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/almalinux/udica?arch=noarch&distro=almalinux-8.1 | almalinux | udica | < 0.2.6-21.module_el8.10.0+3845+87b84552 | almalinux-8.1 | noarch | |
Affected | pkg:rpm/almalinux/toolbox?arch=x86_64&distro=almalinux-8.1 | almalinux | toolbox | < 0.0.99.5-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/toolbox?arch=aarch64&distro=almalinux-8.1 | almalinux | toolbox | < 0.0.99.5-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/toolbox-tests?arch=x86_64&distro=almalinux-8.1 | almalinux | toolbox-tests | < 0.0.99.5-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/toolbox-tests?arch=aarch64&distro=almalinux-8.1 | almalinux | toolbox-tests | < 0.0.99.5-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/slirp4netns?arch=x86_64&distro=almalinux-8.1 | almalinux | slirp4netns | < 1.2.3-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/slirp4netns?arch=aarch64&distro=almalinux-8.1 | almalinux | slirp4netns | < 1.2.3-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/skopeo?arch=x86_64&distro=almalinux-8.1 | almalinux | skopeo | < 1.14.3-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/skopeo?arch=aarch64&distro=almalinux-8.1 | almalinux | skopeo | < 1.14.3-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/skopeo-tests?arch=x86_64&distro=almalinux-8.1 | almalinux | skopeo-tests | < 1.14.3-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/skopeo-tests?arch=aarch64&distro=almalinux-8.1 | almalinux | skopeo-tests | < 1.14.3-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/runc?arch=x86_64&distro=almalinux-8.1 | almalinux | runc | < 1.1.12-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/runc?arch=aarch64&distro=almalinux-8.1 | almalinux | runc | < 1.1.12-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/python3-podman?arch=noarch&distro=almalinux-8.1 | almalinux | python3-podman | < 4.9.0-1.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | noarch | |
Affected | pkg:rpm/almalinux/python3-criu?arch=x86_64&distro=almalinux-8.1 | almalinux | python3-criu | < 3.18-5.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/python3-criu?arch=aarch64&distro=almalinux-8.1 | almalinux | python3-criu | < 3.18-5.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/podman?arch=x86_64&distro=almalinux-8.1 | almalinux | podman | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/podman?arch=aarch64&distro=almalinux-8.1 | almalinux | podman | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/podman-tests?arch=x86_64&distro=almalinux-8.1 | almalinux | podman-tests | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/podman-tests?arch=aarch64&distro=almalinux-8.1 | almalinux | podman-tests | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/podman-remote?arch=x86_64&distro=almalinux-8.1 | almalinux | podman-remote | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/podman-remote?arch=aarch64&distro=almalinux-8.1 | almalinux | podman-remote | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/podman-plugins?arch=x86_64&distro=almalinux-8.1 | almalinux | podman-plugins | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/podman-plugins?arch=aarch64&distro=almalinux-8.1 | almalinux | podman-plugins | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/podman-gvproxy?arch=x86_64&distro=almalinux-8.1 | almalinux | podman-gvproxy | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/podman-gvproxy?arch=aarch64&distro=almalinux-8.1 | almalinux | podman-gvproxy | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/podman-docker?arch=noarch&distro=almalinux-8.1 | almalinux | podman-docker | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | noarch | |
Affected | pkg:rpm/almalinux/podman-catatonit?arch=x86_64&distro=almalinux-8.1 | almalinux | podman-catatonit | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/podman-catatonit?arch=aarch64&distro=almalinux-8.1 | almalinux | podman-catatonit | < 4.9.4-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/oci-seccomp-bpf-hook?arch=x86_64&distro=almalinux-8.1 | almalinux | oci-seccomp-bpf-hook | < 1.2.10-1.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/oci-seccomp-bpf-hook?arch=aarch64&distro=almalinux-8.1 | almalinux | oci-seccomp-bpf-hook | < 1.2.10-1.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/netavark?arch=x86_64&distro=almalinux-8.1 | almalinux | netavark | < 1.10.3-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/netavark?arch=aarch64&distro=almalinux-8.1 | almalinux | netavark | < 1.10.3-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/libslirp?arch=x86_64&distro=almalinux-8.1 | almalinux | libslirp | < 4.4.0-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/libslirp?arch=aarch64&distro=almalinux-8.1 | almalinux | libslirp | < 4.4.0-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/libslirp-devel?arch=x86_64&distro=almalinux-8.1 | almalinux | libslirp-devel | < 4.4.0-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/libslirp-devel?arch=aarch64&distro=almalinux-8.1 | almalinux | libslirp-devel | < 4.4.0-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/fuse-overlayfs?arch=x86_64&distro=almalinux-8.1 | almalinux | fuse-overlayfs | < 1.13-1.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/fuse-overlayfs?arch=aarch64&distro=almalinux-8.1 | almalinux | fuse-overlayfs | < 1.13-1.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/crun?arch=x86_64&distro=almalinux-8.1 | almalinux | crun | < 1.14.3-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/crun?arch=aarch64&distro=almalinux-8.1 | almalinux | crun | < 1.14.3-2.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/criu?arch=x86_64&distro=almalinux-8.1 | almalinux | criu | < 3.18-5.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/criu?arch=aarch64&distro=almalinux-8.1 | almalinux | criu | < 3.18-5.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/criu-libs?arch=x86_64&distro=almalinux-8.1 | almalinux | criu-libs | < 3.18-5.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/criu-libs?arch=aarch64&distro=almalinux-8.1 | almalinux | criu-libs | < 3.18-5.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/criu-devel?arch=x86_64&distro=almalinux-8.1 | almalinux | criu-devel | < 3.18-5.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/criu-devel?arch=aarch64&distro=almalinux-8.1 | almalinux | criu-devel | < 3.18-5.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/crit?arch=x86_64&distro=almalinux-8.1 | almalinux | crit | < 3.18-5.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/crit?arch=aarch64&distro=almalinux-8.1 | almalinux | crit | < 3.18-5.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/containers-common?arch=x86_64&distro=almalinux-8.1 | almalinux | containers-common | < 1-81.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/containers-common?arch=aarch64&distro=almalinux-8.1 | almalinux | containers-common | < 1-81.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/containernetworking-plugins?arch=x86_64&distro=almalinux-8.1 | almalinux | containernetworking-plugins | < 1.4.0-2.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/containernetworking-plugins?arch=aarch64&distro=almalinux-8.1 | almalinux | containernetworking-plugins | < 1.4.0-2.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/container-selinux?arch=noarch&distro=almalinux-8.1 | almalinux | container-selinux | < 2.229.0-2.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | noarch | |
Affected | pkg:rpm/almalinux/conmon?arch=x86_64&distro=almalinux-8.1 | almalinux | conmon | < 2.1.10-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/conmon?arch=aarch64&distro=almalinux-8.1 | almalinux | conmon | < 2.1.10-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/cockpit-podman?arch=noarch&distro=almalinux-8.1 | almalinux | cockpit-podman | < 84.1-1.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | noarch | |
Affected | pkg:rpm/almalinux/buildah?arch=x86_64&distro=almalinux-8.1 | almalinux | buildah | < 1.33.7-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/buildah?arch=aarch64&distro=almalinux-8.1 | almalinux | buildah | < 1.33.7-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/buildah-tests?arch=x86_64&distro=almalinux-8.1 | almalinux | buildah-tests | < 1.33.7-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/buildah-tests?arch=aarch64&distro=almalinux-8.1 | almalinux | buildah-tests | < 1.33.7-1.module_el8.10.0+3845+87b84552 | almalinux-8.1 | aarch64 | |
Affected | pkg:rpm/almalinux/aardvark-dns?arch=x86_64&distro=almalinux-8.1 | almalinux | aardvark-dns | < 1.10.0-1.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | x86_64 | |
Affected | pkg:rpm/almalinux/aardvark-dns?arch=aarch64&distro=almalinux-8.1 | almalinux | aardvark-dns | < 1.10.0-1.module_el8.10.0+3792+03eaed9c | almalinux-8.1 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |