[FEDORA-2021-62352983b4] Fedora 35: golang-github-opencontainers-image-spec
Severity
Medium
Affected Packages
1
CVEs
1
- Update to 1.0.2. Fixes rhbz#2024388. - Mitigates CVE-2021-41190. Fixes rhbz#2024938 and rhbz#2024939.
Package | Affected Version |
---|---|
pkg:rpm/fedora/golang-github-opencontainers-image-spec?distro=fedora-35 | < 1.0.2.1.fc35 |
- ID
- FEDORA-2021-62352983b4
- Severity
- medium
- Severity from
- CVE-2021-41190
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2021-62352983b4
- Published
-
2021-12-10T01:22:38
(2 years ago) - Modified
-
2021-12-10T01:22:38
(2 years ago) - Rights
- Copyright 2021 Red Hat, Inc.
- Other Advisories
-
- ALAS-2021-1551
- ALPINE:CVE-2021-41190
- ELSA-2022-7457
- FEDORA-2021-3dda301691
- FEDORA-2021-6789ed60f2
- FEDORA-2021-6dc68dbe4d
- FEDORA-2021-79ba5abef6
- FEDORA-2021-aacef7fa15
- FEDORA-2021-d250fc2622
- FEDORA-2021-eb2742b148
- openSUSE-SU-2021:1525-1
- openSUSE-SU-2022:0334-1
- RHSA-2022:7457
- RLSA-2022:7457
- SUSE-SU-2022:0213-1
- SUSE-SU-2022:0334-1
- SUSE-SU-2022:1507-1
- SUSE-SU-2023:0187-1
- SUSE-SU-2023:0326-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 2024938 | Bug #2024938 - CVE-2021-41190 opencontainers: OCI manifest and index parsing confusion | https://bugzilla.redhat.com/show_bug.cgi?id=2024938 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/golang-github-opencontainers-image-spec?distro=fedora-35 | fedora | golang-github-opencontainers-image-spec | < 1.0.2.1.fc35 | fedora-35 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |