ALSA-2024:3826

See a problem?

Source

https://errata.almalinux.org/9/ALSA-2024-3826.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2024:3826.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2024:3826

Related

Published

2024-06-11T00:00:00Z

Modified

2024-06-14T09:47:46Z

Summary

Moderate: podman security and bug fix update

Details

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.

Security Fixes:

podman: jose-go: improper handling of highly compressed data (CVE-2024-28180)
podman: golang: net/http: memory exhaustion in Request.ParseMultipartForm (CVE-2023-45290)
podman: jose: resource exhaustion (CVE-2024-28176)

References

Affected packages

AlmaLinux:9 / podman

Package

Name: podman

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4:4.9.4-4.el9_4

AlmaLinux:9 / podman-docker

Package

Name: podman-docker

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4:4.9.4-4.el9_4

AlmaLinux:9 / podman-plugins

Package

Name: podman-plugins

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4:4.9.4-4.el9_4

AlmaLinux:9 / podman-remote

Package

Name: podman-remote

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4:4.9.4-4.el9_4

AlmaLinux:9 / podman-tests

Package

Name: podman-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4:4.9.4-4.el9_4