Количество 55
Количество 55
RLSA-2019:3403
Important: container-tools:rhel8 security, bug fix, and enhancement update
RLSA-2019:3494
Important: container-tools:1.0 security and bug fix update
ELSA-2019-3494
ELSA-2019-3494: container-tools:1.0 security and bug fix update (IMPORTANT)
ELSA-2019-3403
ELSA-2019-3403: container-tools:ol8 security, bug fix, and enhancement update (IMPORTANT)
CVE-2019-10214
The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launch a MiTM attack and steal login credentials or bearer tokens.
CVE-2019-10214
The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launch a MiTM attack and steal login credentials or bearer tokens.
CVE-2019-10214
The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launch a MiTM attack and steal login credentials or bearer tokens.
CVE-2019-10214
The containers/image library used by the container tools Podman, Build ...
openSUSE-SU-2020:0377-1
Security update for skopeo
openSUSE-SU-2019:2159-1
Security update for skopeo
openSUSE-SU-2019:2143-1
Security update for podman
openSUSE-SU-2019:2138-1
Security update for skopeo
openSUSE-SU-2019:2137-1
Security update for buildah
SUSE-SU-2020:0712-1
Security update for skopeo
SUSE-SU-2019:2346-1
Security update for podman
SUSE-SU-2019:2341-1
Security update for buildah
SUSE-SU-2019:2340-1
Security update for skopeo
GHSA-85p9-j7c9-v4gr
containers/image library Insufficiently Protects Credentials
CVE-2019-9946
Cloud Native Computing Foundation (CNCF) CNI (Container Networking Interface) 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE- SERVICES chain. Because of this, the HostPort/portmap rule could match incoming traffic even if there were better fitting, more specific service definition rules like NodePorts later in the chain. The issue is fixed in CNI 0.7.5 and Kubernetes 1.11.9, 1.12.7, 1.13.5, and 1.14.0.
CVE-2019-9946
Cloud Native Computing Foundation (CNCF) CNI (Container Networking Interface) 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE- SERVICES chain. Because of this, the HostPort/portmap rule could match incoming traffic even if there were better fitting, more specific service definition rules like NodePorts later in the chain. The issue is fixed in CNI 0.7.5 and Kubernetes 1.11.9, 1.12.7, 1.13.5, and 1.14.0.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | RLSA-2019:3403 Important: container-tools:rhel8 security, bug fix, and enhancement update | больше 5 лет назад | ||
| RLSA-2019:3494 Important: container-tools:1.0 security and bug fix update | больше 5 лет назад | ||
| ELSA-2019-3494 ELSA-2019-3494: container-tools:1.0 security and bug fix update (IMPORTANT) | больше 5 лет назад | ||
| ELSA-2019-3403 ELSA-2019-3403: container-tools:ol8 security, bug fix, and enhancement update (IMPORTANT) | больше 5 лет назад | ||
 | CVE-2019-10214 The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launch a MiTM attack and steal login credentials or bearer tokens. | CVSS3: 5.9 | 0% Низкий | больше 5 лет назад |
 | CVE-2019-10214 The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launch a MiTM attack and steal login credentials or bearer tokens. | CVSS3: 6.4 | 0% Низкий | почти 6 лет назад |
 | CVE-2019-10214 The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An attacker could use this vulnerability to launch a MiTM attack and steal login credentials or bearer tokens. | CVSS3: 5.9 | 0% Низкий | больше 5 лет назад |
| CVE-2019-10214 The containers/image library used by the container tools Podman, Build ... | CVSS3: 5.9 | 0% Низкий | больше 5 лет назад |
 | openSUSE-SU-2020:0377-1 Security update for skopeo | 0% Низкий | около 5 лет назад | |
| openSUSE-SU-2019:2159-1 Security update for skopeo | 0% Низкий | больше 5 лет назад | |
| openSUSE-SU-2019:2143-1 Security update for podman | 0% Низкий | почти 6 лет назад | |
| openSUSE-SU-2019:2138-1 Security update for skopeo | 0% Низкий | почти 6 лет назад | |
| openSUSE-SU-2019:2137-1 Security update for buildah | 0% Низкий | почти 6 лет назад | |
| SUSE-SU-2020:0712-1 Security update for skopeo | 0% Низкий | больше 5 лет назад | |
| SUSE-SU-2019:2346-1 Security update for podman | 0% Низкий | почти 6 лет назад | |
| SUSE-SU-2019:2341-1 Security update for buildah | 0% Низкий | почти 6 лет назад | |
| SUSE-SU-2019:2340-1 Security update for skopeo | 0% Низкий | почти 6 лет назад | |
| GHSA-85p9-j7c9-v4gr containers/image library Insufficiently Protects Credentials | CVSS3: 6.4 | 0% Низкий | больше 3 лет назад |
| CVE-2019-9946 Cloud Native Computing Foundation (CNCF) CNI (Container Networking Interface) 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE- SERVICES chain. Because of this, the HostPort/portmap rule could match incoming traffic even if there were better fitting, more specific service definition rules like NodePorts later in the chain. The issue is fixed in CNI 0.7.5 and Kubernetes 1.11.9, 1.12.7, 1.13.5, and 1.14.0. | CVSS3: 7.5 | 0% Низкий | около 6 лет назад |
| CVE-2019-9946 Cloud Native Computing Foundation (CNCF) CNI (Container Networking Interface) 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE- SERVICES chain. Because of this, the HostPort/portmap rule could match incoming traffic even if there were better fitting, more specific service definition rules like NodePorts later in the chain. The issue is fixed in CNI 0.7.5 and Kubernetes 1.11.9, 1.12.7, 1.13.5, and 1.14.0. | CVSS3: 6.5 | 0% Низкий | около 6 лет назад |
Уязвимостей на страницу