[FEDORA-2024-453ee0b3b9] Fedora 39: apptainer
Severity
Medium
Affected Packages
1
CVEs
2
Update to upstream 1.3.0, and security fixes for CVE-2024-28176 and
CVE-2024-28180
Package | Affected Version |
---|---|
pkg:rpm/fedora/apptainer?distro=fedora-39 | < 1.3.0.1.fc39 |
- ID
- FEDORA-2024-453ee0b3b9
- Severity
- medium
- Severity from
- CVE-2024-28176
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2024-453ee0b3b9
- Published
-
2024-03-22T01:16:30
(5 months ago) - Modified
-
2024-03-22T01:16:30
(5 months ago) - Rights
- Copyright 2024 Red Hat, Inc.
- Other Advisories
-
- ALAS2-2024-2618
- ALPINE:CVE-2024-28180
- ALSA-2024:2549
- ALSA-2024:3254
- ALSA-2024:3826
- ALSA-2024:3827
- ALSA-2024:3968
- ALSA-2024:5294
- ELSA-2024-2549
- ELSA-2024-3254
- ELSA-2024-3826
- ELSA-2024-3827
- ELSA-2024-3968
- ELSA-2024-5294
- FEDORA-2024-22f1e313dd
- FEDORA-2024-45f0a1df95
- FEDORA-2024-529fe8a802
- FEDORA-2024-560a7aca85
- FEDORA-2024-831bad8f8f
- FEDORA-2024-9231308a4f
- FEDORA-2024-a8a4ce2864
- FEDORA-2024-c95d3199c5
- GO-2024-2631
- NPM:GHSA-HHHV-Q57G-882Q
- RHSA-2024:2549
- RHSA-2024:3254
- RHSA-2024:3826
- RHSA-2024:3827
- RHSA-2024:3968
- RHSA-2024:5294
- RLSA-2024:2549
- RLSA-2024:3826
- RLSA-2024:3827
- SUSE-SU-2024:1987-1
- SUSE-SU-2024:1987-2
- SUSE-SU-2024:2754-1
- SUSE-SU-2024:3120-1
- SUSE-SU-2024:3151-1
- SUSE-SU-2024:3186-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 2268854 | Bug #2268854 - CVE-2024-28180 jose-go: improper handling of highly compressed data | https://bugzilla.redhat.com/show_bug.cgi?id=2268854 |
Bugzilla | 2268820 | Bug #2268820 - CVE-2024-28176 jose: resource exhaustion | https://bugzilla.redhat.com/show_bug.cgi?id=2268820 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/apptainer?distro=fedora-39 | fedora | apptainer | < 1.3.0.1.fc39 | fedora-39 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |