update: containers-common #1563

dongsupark · 2024-10-14T11:17:12Z

Name: containers-common
CVEs: CVE-2024-9341
CVSSs: 5.4
Action Needed: update to >= 0.60.4

Summary: A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host directories inside a container. This issue also allows attackers to access critical host files, bypassing the intended isolation between containers and the host system.

refmap.gentoo: https://bugs.gentoo.org/941218

dongsupark added security security concerns advisory security advisory cvss/MEDIUM >= 4 && < 7 assessed CVSS labels Oct 14, 2024

dongsupark added this to Flatcar tactical, release planning, and roadmap Oct 14, 2024

github-project-automation bot moved this to 📝 Needs Triage in Flatcar tactical, release planning, and roadmap Oct 14, 2024

dongsupark moved this from 📝 Needs Triage to 🪵Backlog in Flatcar tactical, release planning, and roadmap Oct 14, 2024

github-actions bot mentioned this issue Oct 22, 2024

Monthly contributions report 2024-09-22 - 2024-10-21 #1568

Closed

krnowak mentioned this issue Oct 28, 2024

Weekly portage-stable package updates 2024-10-21 flatcar/scripts#2388

Merged

2 tasks

krnowak closed this as completed in flatcar/scripts#2388 Oct 29, 2024

github-project-automation bot moved this from 🪵Backlog to Implemented in Flatcar tactical, release planning, and roadmap Oct 29, 2024

github-actions bot mentioned this issue Nov 22, 2024

Monthly contributions report 2024-10-22 - 2024-11-21 #1585

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

update: containers-common #1563

update: containers-common #1563

dongsupark commented Oct 14, 2024

update: containers-common #1563

update: containers-common #1563

Comments

dongsupark commented Oct 14, 2024