Описание
ELSA-2025-9151: gvisor-tap-vsock security update (MODERATE)
[6:0.8.5-2]
- Rebuild on new golang to fix CVE-2025-22871
[6:0.8.5-1]
- update to https://github.com/containers/gvisor-tap-vsock/releases/tag/v0.8.5
- Related: RHEL-80817
[6:0.8.4-1]
- update to https://github.com/containers/gvisor-tap-vsock/releases/tag/v0.8.4
- Resolves: RHEL-83030
Обновленные пакеты
Oracle Linux 10
Oracle Linux aarch64
gvisor-tap-vsock
0.8.5-2.el10_0
gvisor-tap-vsock-gvforwarder
0.8.5-2.el10_0
Oracle Linux x86_64
gvisor-tap-vsock
0.8.5-2.el10_0
gvisor-tap-vsock-gvforwarder
0.8.5-2.el10_0
Связанные CVE
Связанные уязвимости
The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext.
The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext.
The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext.
The net/http package improperly accepts a bare LF as a line terminator ...