Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-3727 (GCVE-0-2024-3727)
Vulnerability from cvelistv5 – Published: 2024-05-09 14:57 – Updated: 2026-06-02 17:34
VLAI
EPSS
Title
Containers/image: digest type does not guarantee valid type
Summary
A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.
Severity
8.3 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-354 - Improper Validation of Integrity Check Value
Assigner
References
36 references
Impacted products
87 products
| Vendor | Product | Version | |
|---|---|---|---|
|
Affected:
0 , < 5.29.3
(semver)
Affected: 5.30.0 , < 5.30.1 (semver) |
|||
| Red Hat | OADP-1.3-RHEL-9 |
Unaffected:
1.3.4-9 , < *
(rpm)
cpe:/a:redhat:openshift_api_data_protection:1.3::el9 |
|
| Red Hat | Red Hat Advanced Cluster Security 4.4 |
Unaffected:
4.4.5-2 , < *
(rpm)
cpe:/a:redhat:advanced_cluster_security:4.4::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security 4.4 |
Unaffected:
4.4.5-4 , < *
(rpm)
cpe:/a:redhat:advanced_cluster_security:4.4::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security 4.4 |
Unaffected:
4.4.5-3 , < *
(rpm)
cpe:/a:redhat:advanced_cluster_security:4.4::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security 4.5 |
Unaffected:
4.5.2-2 , < *
(rpm)
cpe:/a:redhat:advanced_cluster_security:4.5::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security 4.5 |
Unaffected:
4.5.2-1 , < *
(rpm)
cpe:/a:redhat:advanced_cluster_security:4.5::el8 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
8100020240808093819.afee755d , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
2:1.37.2-1.el9 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
2:1.16.1-1.el9 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
2:5.2.2-1.el9 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Migration Toolkit for Containers 1.8 |
Unaffected:
v1.8.4-22 , < *
(rpm)
cpe:/a:redhat:rhmt:1.8::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
3:4.4.1-13.rhaos4.13.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 cpe:/a:redhat:openshift_ironic:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
2:1.11.3-3.rhaos4.13.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el8 cpe:/a:redhat:openshift:4.13::el9 cpe:/a:redhat:openshift_ironic:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
v4.14.0-202407260439.p0.g8d9b39e.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
3:4.4.1-19.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 cpe:/a:redhat:openshift_ironic:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
2:1.11.3-3.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 cpe:/a:redhat:openshift_ironic:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409172305.p0.g17536c8.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409171307.p0.ged4651a.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409161436.p0.g1f44c02.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409120135.p0.gf7f5eed.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409131835.p0.gadccbd5.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409120135.p0.g8425d88.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409130735.p0.gc03231f.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409131635.p0.gb73e37f.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409161836.p0.g092d15b.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409180105.p0.g1fdd5b0.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409180905.p0.gf6f61ca.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409171307.p0.g160e7ca.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409131635.p0.gb7c1d6a.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409111636.p0.gf0c44f6.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409120135.p0.g3ab953d.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409111636.p0.g9ea52de.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409111636.p0.gd80fe46.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409120135.p0.g8de6f94.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409171307.p0.g5d529dd.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409180305.p0.g1da79fe.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409172305.p0.g5af0be8.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409130536.p0.g1d6a7ed.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409161436.p0.g4121cfc.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409120135.p0.g71a6f28.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409180705.p0.g95ee44e.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202409161234.p0.g4e8d689.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
415.92.202409162258-0 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
3:4.4.1-30.rhaos4.15.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift_ironic:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
2:1.11.3-4.rhaos4.15.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift_ironic:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202410230304.p0.g366295f.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202410230304.p0.gfde2b2e.assembly.stream.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
v4.15.0-202407230407.p0.gf3f8de5.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el8 cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.16 |
Unaffected:
4:4.9.4-5.1.rhaos4.16.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.16::el8 cpe:/a:redhat:openshift:4.16::el9 cpe:/a:redhat:openshift_ironic:4.16::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.16 |
Unaffected:
2:1.14.4-1.rhaos4.16.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.16::el8 cpe:/a:redhat:openshift:4.16::el9 cpe:/a:redhat:openshift_ironic:4.16::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.16 |
Unaffected:
0:1.29.5-7.rhaos4.16.git7db4ada.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.16::el8 cpe:/a:redhat:openshift:4.16::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.16 |
Unaffected:
v4.16.0-202407171536.p0.g1551101.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.16::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.16 |
Unaffected:
v4.16.0-202409162206.p0.g6a425ab.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.16::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.16 |
Unaffected:
v4.16.0-202409231504.p0.g342902b.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.16::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.16 |
Unaffected:
v4.16.0-202410172201.p0.gb121e87.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.16::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.17 |
Unaffected:
v4.17.0-202409122005.p0.gb170ad0.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.17::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.17 |
Unaffected:
v4.17.0-202409100034.p0.g8d16b39.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.17::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.17 |
Unaffected:
v4.17.0-202409101338.p0.gb0d86a0.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.17::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.17 |
Unaffected:
v4.17.0-202410022234.p0.gfbc55c6.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.17::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.18 |
Unaffected:
v4.18.0-202502100934.p0.gc00c7c9.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.18::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.18 |
Unaffected:
v4.18.0-202502040032.p0.ge5a4005.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.18::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.18 |
Unaffected:
v4.18.0-202502041302.p0.g51a74ac.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.18::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.18 |
Unaffected:
v4.18.0-202501230001.p0.g5348c85.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.18::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.18 |
Unaffected:
v4.18.0-202502100153.p0.g120ba67.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.18::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.18 |
Unaffected:
v4.18.0-202502060238.p0.g73d65db.assembly.stream.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.18::el9 |
|
| Red Hat | RHEL-9-CNV-4.15 |
Unaffected:
v4.15.5-7 , < *
(rpm)
cpe:/a:redhat:container_native_virtualization:4.15::el9 |
|
| Red Hat | Multicluster Engine for Kubernetes |
cpe:/a:redhat:multicluster_engine |
|
| Red Hat | OpenShift Developer Tools and Services |
cpe:/a:redhat:ocp_tools |
|
| Red Hat | OpenShift Serverless |
cpe:/a:redhat:serverless:1 |
|
| Red Hat | OpenShift Source-to-Image (S2I) |
cpe:/a:redhat:source_to_image:1 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 |
cpe:/a:redhat:acm:2 |
|
| Red Hat | Red Hat Advanced Cluster Security 3 |
cpe:/a:redhat:advanced_cluster_security:3 |
|
| Red Hat | Red Hat Ansible Automation Platform 1.2 |
cpe:/a:redhat:ansible_automation_platform |
|
| Red Hat | Red Hat Ansible Automation Platform 2 |
cpe:/a:redhat:ansible_automation_platform:2 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat OpenShift Container Platform 3.11 |
cpe:/a:redhat:openshift:3.11 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat OpenShift Container Platform Assisted Installer 1 |
cpe:/a:redhat:assisted_installer:1 |
|
| Red Hat | Red Hat OpenShift Dev Spaces |
cpe:/a:redhat:openshift_devspaces:3 |
|
| Red Hat | Red Hat Openshift Sandboxed Containers |
cpe:/a:redhat:openshift_sandboxed_containers:1 |
|
| Red Hat | Red Hat OpenShift Virtualization 4 |
cpe:/a:redhat:container_native_virtualization:4 |
|
| Red Hat | Red Hat OpenStack Platform 16.2 |
cpe:/a:redhat:openstack:16.2 |
|
| Red Hat | Red Hat Quay 3 |
cpe:/a:redhat:quay:3 |
Date Public
2024-05-09 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-3727",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-05-13T17:59:41.318223Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-04T17:33:13.046Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T20:20:01.029Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2024:0045",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:0045"
},
{
"name": "RHSA-2024:4159",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4159"
},
{
"name": "RHSA-2024:4613",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4613"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/security/cve/CVE-2024-3727"
},
{
"name": "RHBZ#2274767",
"tags": [
"issue-tracking",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274767"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4HEYS34N55G7NOQZKNEXZKQVNDGEICCD/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6B37TXOKTKDBE2V26X2NSP7JKNMZOFVP/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CYT3D2P3OJKISNFKOOHGY6HCUCQZYAVR/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DLND3YDQQRWVRIUPL2G5UKXP5L3VSBBT/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DTOMYERG5ND4QFDHC4ZSGCED3T3ESRSC/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FBZQ2ZRMFEUQ35235B2HWPSXGDCBZHFV/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GD2GSBQTBLYADASUBHHZV2CZPTSLIPQJ/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QFXMF3VVKIZN7ZMB7PKZCSWV6MOMTGMQ/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SFVSMR7TNLO2KPWJSW4CF64C2QMQXCIN/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://github.com/containers/image",
"defaultStatus": "unaffected",
"packageName": "image",
"versions": [
{
"lessThan": "5.29.3",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "5.30.1",
"status": "affected",
"version": "5.30.0",
"versionType": "semver"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1.3::el9"
],
"defaultStatus": "affected",
"packageName": "oadp/oadp-velero-plugin-rhel9",
"product": "OADP-1.3-RHEL-9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1.3.4-9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-central-db-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-collector-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-collector-slim-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-main-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-operator-bundle",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-3",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-rhel8-operator",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-roxctl-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-db-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-3",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-slim-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-3",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.4::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-v4-rhel8",
"product": "Red Hat Advanced Cluster Security 4.4",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.4.5-3",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-central-db-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-collector-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-collector-slim-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-main-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-operator-bundle",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-rhel8-operator",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-roxctl-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-db-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-slim-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-1",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.5::el8"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-v4-rhel8",
"product": "Red Hat Advanced Cluster Security 4.5",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4.5.2-2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "container-tools:rhel8",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8100020240808093819.afee755d",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "buildah",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.37.2-1.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.16.1-1.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:5.2.2-1.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:rhmt:1.8::el8"
],
"defaultStatus": "affected",
"packageName": "rhmtc/openshift-migration-controller-rhel8",
"product": "Red Hat Migration Toolkit for Containers 1.8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v1.8.4-22",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9",
"cpe:/a:redhat:openshift_ironic:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-13.rhaos4.13.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el8",
"cpe:/a:redhat:openshift:4.13::el9",
"cpe:/a:redhat:openshift_ironic:4.13::el9"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.11.3-3.rhaos4.13.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-operator-lifecycle-manager",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.14.0-202407260439.p0.g8d9b39e.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9",
"cpe:/a:redhat:openshift_ironic:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-19.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9",
"cpe:/a:redhat:openshift_ironic:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.11.3-3.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/network-tools-rhel8",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409172305.p0.g17536c8.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-api-server-rhel8",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409171307.p0.ged4651a.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-node-agent-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409161436.p0.g1f44c02.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-alibaba-machine-controllers-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409120135.p0.gf7f5eed.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-apiserver-network-proxy-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409131835.p0.gadccbd5.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-cluster-autoscaler-rhel9-operator",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409120135.p0.g8425d88.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-cluster-control-plane-machine-set-rhel9-operator",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409130735.p0.gc03231f.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-cluster-ingress-rhel9-operator",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409131635.p0.gb73e37f.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-cluster-network-rhel9-operator",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409161836.p0.g092d15b.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-cluster-node-tuning-rhel9-operator",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409180105.p0.g1fdd5b0.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-console",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409180905.p0.gf6f61ca.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-docker-builder",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409171307.p0.g160e7ca.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-hypershift-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409131635.p0.gb7c1d6a.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-insights-rhel9-operator",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409111636.p0.gf0c44f6.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-machine-api-rhel9-operator",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409120135.p0.g3ab953d.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-multus-admission-controller-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409111636.p0.g9ea52de.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-multus-whereabouts-ipam-cni-rhel8",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409111636.p0.gd80fe46.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-nutanix-machine-controllers-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409120135.p0.g8de6f94.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-openshift-controller-manager-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409171307.p0.g5d529dd.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-operator-lifecycle-manager-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409180305.p0.g1da79fe.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-operator-registry-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409180305.p0.g1da79fe.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-ovn-kubernetes-microshift-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409172305.p0.g5af0be8.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-ovn-kubernetes-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409172305.p0.g5af0be8.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-powervs-cloud-controller-manager-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409130536.p0.g1d6a7ed.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-powervs-machine-controllers-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409161436.p0.g4121cfc.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-sdn-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409120135.p0.g71a6f28.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-tests",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409180705.p0.g95ee44e.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-tools-rhel8",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202409161234.p0.g4e8d689.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "rhcos",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "415.92.202409162258-0",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift_ironic:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-30.rhaos4.15.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift_ironic:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.11.3-4.rhaos4.15.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-node-agent-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202410230304.p0.g366295f.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-orchestrator-rhel8",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202410230304.p0.gfde2b2e.assembly.stream.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el8",
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-operator-lifecycle-manager-rhel9",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.0-202407230407.p0.gf3f8de5.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.16::el8",
"cpe:/a:redhat:openshift:4.16::el9",
"cpe:/a:redhat:openshift_ironic:4.16::el9"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.16",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4:4.9.4-5.1.rhaos4.16.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.16::el8",
"cpe:/a:redhat:openshift:4.16::el9",
"cpe:/a:redhat:openshift_ironic:4.16::el9"
],
"defaultStatus": "affected",
"packageName": "skopeo",
"product": "Red Hat OpenShift Container Platform 4.16",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:1.14.4-1.rhaos4.16.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.16::el8",
"cpe:/a:redhat:openshift:4.16::el9"
],
"defaultStatus": "affected",
"packageName": "cri-o",
"product": "Red Hat OpenShift Container Platform 4.16",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.29.5-7.rhaos4.16.git7db4ada.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.16::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-operator-lifecycle-manager-rhel9",
"product": "Red Hat OpenShift Container Platform 4.16",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.16.0-202407171536.p0.g1551101.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.16::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-machine-config-rhel9-operator",
"product": "Red Hat OpenShift Container Platform 4.16",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.16.0-202409162206.p0.g6a425ab.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.16::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-orchestrator-rhel9",
"product": "Red Hat OpenShift Container Platform 4.16",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.16.0-202409231504.p0.g342902b.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.16::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-node-agent-rhel9",
"product": "Red Hat OpenShift Container Platform 4.16",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.16.0-202410172201.p0.gb121e87.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.17::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-machine-config-rhel9-operator",
"product": "Red Hat OpenShift Container Platform 4.17",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.17.0-202409122005.p0.gb170ad0.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.17::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-olm-operator-controller-rhel9",
"product": "Red Hat OpenShift Container Platform 4.17",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.17.0-202409100034.p0.g8d16b39.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.17::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-operator-lifecycle-manager-rhel9",
"product": "Red Hat OpenShift Container Platform 4.17",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.17.0-202409101338.p0.gb0d86a0.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.17::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-operator-registry-rhel9",
"product": "Red Hat OpenShift Container Platform 4.17",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.17.0-202409101338.p0.gb0d86a0.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.17::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-orchestrator-rhel9",
"product": "Red Hat OpenShift Container Platform 4.17",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.17.0-202410022234.p0.gfbc55c6.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.18::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/oc-mirror-plugin-rhel9",
"product": "Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.18.0-202502100934.p0.gc00c7c9.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.18::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-api-server-rhel9",
"product": "Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.18.0-202502040032.p0.ge5a4005.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.18::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-node-agent-rhel9",
"product": "Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.18.0-202502041302.p0.g51a74ac.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.18::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-orchestrator-rhel9",
"product": "Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.18.0-202501230001.p0.g5348c85.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.18::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-machine-config-rhel9-operator",
"product": "Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.18.0-202502100153.p0.g120ba67.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4.18::el9"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-openshift-apiserver-rhel9",
"product": "Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.18.0-202502060238.p0.g73d65db.assembly.stream.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4.15::el9"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-controller-rhel9",
"product": "RHEL-9-CNV-4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "v4.15.5-7",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "unaffected",
"packageName": "multicluster-engine/agent-service-rhel8",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "unaffected",
"packageName": "multicluster-engine/assisted-installer-agent-rhel9",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "unaffected",
"packageName": "multicluster-engine/assisted-installer-reporter-rhel8",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "unaffected",
"packageName": "multicluster-engine/assisted-installer-rhel8",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "unaffected",
"packageName": "multicluster-engine-hive-container",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ocp_tools"
],
"defaultStatus": "affected",
"packageName": "ocp-tools-4/jenkins-agent-base-rhel8",
"product": "OpenShift Developer Tools and Services",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ocp_tools"
],
"defaultStatus": "affected",
"packageName": "ocp-tools-4/jenkins-rhel8",
"product": "OpenShift Developer Tools and Services",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:serverless:1"
],
"defaultStatus": "affected",
"packageName": "openshift-serverless-1/client-kn-rhel8",
"product": "OpenShift Serverless",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:serverless:1"
],
"defaultStatus": "affected",
"packageName": "openshift-serverless-clients",
"product": "OpenShift Serverless",
"vendor": "Red Hat"
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:source_to_image:1"
],
"defaultStatus": "affected",
"packageName": "source-to-image-container",
"product": "OpenShift Source-to-Image (S2I)",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:acm:2"
],
"defaultStatus": "unaffected",
"packageName": "rhacm2/submariner-rhel8-operator",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-central-db-rhel8",
"product": "Red Hat Advanced Cluster Security 3",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-main-rhel8",
"product": "Red Hat Advanced Cluster Security 3",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-rhel8-operator",
"product": "Red Hat Advanced Cluster Security 3",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-roxctl-rhel8",
"product": "Red Hat Advanced Cluster Security 3",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-db-rhel8",
"product": "Red Hat Advanced Cluster Security 3",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3"
],
"defaultStatus": "unaffected",
"packageName": "advanced-cluster-security/rhacs-scanner-db-slim-rhel8",
"product": "Red Hat Advanced Cluster Security 3",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-rhel8",
"product": "Red Hat Advanced Cluster Security 3",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:3"
],
"defaultStatus": "affected",
"packageName": "advanced-cluster-security/rhacs-scanner-slim-rhel8",
"product": "Red Hat Advanced Cluster Security 3",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ansible_automation_platform"
],
"defaultStatus": "unaffected",
"packageName": "openshift-clients",
"product": "Red Hat Ansible Automation Platform 1.2",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2"
],
"defaultStatus": "unaffected",
"packageName": "openshift-clients",
"product": "Red Hat Ansible Automation Platform 2",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "unaffected",
"packageName": "buildah",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "unaffected",
"packageName": "conmon",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "unaffected",
"packageName": "containers-common",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "unaffected",
"packageName": "osbuild-composer",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "unaffected",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "unaffected",
"packageName": "skopeo",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "buildah",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "skopeo",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/buildah",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/conmon",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/containers-common",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "container-tools:4.0/podman",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "unaffected",
"packageName": "container-tools:4.0/skopeo",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"packageName": "osbuild-composer",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "unaffected",
"packageName": "conmon",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "unaffected",
"packageName": "containers-common",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "osbuild-composer",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:3.11"
],
"defaultStatus": "unknown",
"packageName": "atomic-openshift",
"product": "Red Hat OpenShift Container Platform 3.11",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:3.11"
],
"defaultStatus": "unknown",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 3.11",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "buildah",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "conmon",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "containers-common",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-agent-installer-csr-approver-rhel8",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "openshift4/ose-baremetal-installer-rhel8",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-cli",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-cli-artifacts",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-deployer",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-installer",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "openshift4/ose-installer-altinfra-rhel9",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "openshift4/ose-installer-artifacts-rhel9",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "openshift4/ose-olm-rukpak-rhel8",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "openshift4/ose-openshift-proxy-pull-test-rhel8",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"packageName": "openshift-clients",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "unaffected",
"packageName": "ose-installer-terraform-providers-container",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:assisted_installer:1"
],
"defaultStatus": "affected",
"packageName": "rhai-tech-preview/assisted-installer-agent-rhel8",
"product": "Red Hat OpenShift Container Platform Assisted Installer 1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:assisted_installer:1"
],
"defaultStatus": "affected",
"packageName": "rhai-tech-preview/assisted-installer-reporter-rhel8",
"product": "Red Hat OpenShift Container Platform Assisted Installer 1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:assisted_installer:1"
],
"defaultStatus": "affected",
"packageName": "rhai-tech-preview/assisted-installer-rhel8",
"product": "Red Hat OpenShift Container Platform Assisted Installer 1",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3"
],
"defaultStatus": "affected",
"packageName": "devspaces/udi-rhel8",
"product": "Red Hat OpenShift Dev Spaces",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_sandboxed_containers:1"
],
"defaultStatus": "affected",
"packageName": "openshift-sandboxed-containers/osc-must-gather-rhel8",
"product": "Red Hat Openshift Sandboxed Containers",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift_sandboxed_containers:1"
],
"defaultStatus": "affected",
"packageName": "openshift-sandboxed-containers/osc-rhel9-operator",
"product": "Red Hat Openshift Sandboxed Containers",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-apiserver",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-apiserver-rhel9",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-cloner",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-cloner-rhel9",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-controller",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-importer",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-importer-rhel9",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-operator",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-operator-rhel9",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-uploadproxy",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-uploadproxy-rhel9",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-uploadserver",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"packageName": "container-native-virtualization/virt-cdi-uploadserver-rhel9",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"collectionURL": "https://catalog.redhat.com/software/containers/",
"cpes": [
"cpe:/a:redhat:openstack:16.2"
],
"defaultStatus": "affected",
"packageName": "osp-director-provisioner-container",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:quay:3"
],
"defaultStatus": "unaffected",
"packageName": "quay/quay-builder-rhel8",
"product": "Red Hat Quay 3",
"vendor": "Red Hat"
}
],
"datePublic": "2024-05-09T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-354",
"description": "Improper Validation of Integrity Check Value",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-02T17:34:35.670Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2024:0045",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:0045"
},
{
"name": "RHSA-2024:3718",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3718"
},
{
"name": "RHSA-2024:4159",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4159"
},
{
"name": "RHSA-2024:4613",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4613"
},
{
"name": "RHSA-2024:4850",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4850"
},
{
"name": "RHSA-2024:4960",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:4960"
},
{
"name": "RHSA-2024:5258",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:5258"
},
{
"name": "RHSA-2024:5951",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:5951"
},
{
"name": "RHSA-2024:6054",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:6054"
},
{
"name": "RHSA-2024:6122",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:6122"
},
{
"name": "RHSA-2024:6708",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:6708"
},
{
"name": "RHSA-2024:6818",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:6818"
},
{
"name": "RHSA-2024:6824",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:6824"
},
{
"name": "RHSA-2024:7164",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"name": "RHSA-2024:7174",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:7174"
},
{
"name": "RHSA-2024:7182",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:7182"
},
{
"name": "RHSA-2024:7187",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:7187"
},
{
"name": "RHSA-2024:7922",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:7922"
},
{
"name": "RHSA-2024:7941",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:7941"
},
{
"name": "RHSA-2024:8260",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:8260"
},
{
"name": "RHSA-2024:8425",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:8425"
},
{
"name": "RHSA-2024:9097",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:9097"
},
{
"name": "RHSA-2024:9098",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:9098"
},
{
"name": "RHSA-2024:9102",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:9102"
},
{
"name": "RHSA-2024:9960",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:9960"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2024-3727"
},
{
"name": "RHBZ#2274767",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274767"
}
],
"timeline": [
{
"lang": "en",
"time": "2024-04-12T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2024-05-09T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Containers/image: digest type does not guarantee valid type",
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-354: Improper Validation of Integrity Check Value"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2024-3727",
"datePublished": "2024-05-09T14:57:21.327Z",
"dateReserved": "2024-04-12T17:56:37.261Z",
"dateUpdated": "2026-06-02T17:34:35.670Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-3727",
"date": "2026-06-11",
"epss": "0.00663",
"percentile": "0.71656"
},
"fkie_nvd": {
"descriptions": "[{\"lang\": \"en\", \"value\": \"A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.\"}, {\"lang\": \"es\", \"value\": \"Se encontr\\u00f3 una falla en la librer\\u00eda github.com/containers/image. Esta falla permite a los atacantes activar accesos inesperados al registro autenticado en nombre de un usuario v\\u00edctima, lo que provoca agotamiento de recursos, path traversal local y otros ataques.\"}]",
"id": "CVE-2024-3727",
"lastModified": "2024-11-23T04:15:09.660",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H\", \"baseScore\": 8.3, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.6, \"impactScore\": 6.0}]}",
"published": "2024-05-14T15:42:07.060",
"references": "[{\"url\": \"https://access.redhat.com/errata/RHSA-2024:0045\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3718\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4159\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4613\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4850\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4960\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:5258\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:5951\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:6054\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:6708\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:6824\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7164\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7174\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7182\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7187\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7922\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7941\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:8260\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:8425\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:9097\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:9098\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:9102\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:9960\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-3727\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2274767\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:0045\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4159\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4613\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-3727\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2274767\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4HEYS34N55G7NOQZKNEXZKQVNDGEICCD/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6B37TXOKTKDBE2V26X2NSP7JKNMZOFVP/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CYT3D2P3OJKISNFKOOHGY6HCUCQZYAVR/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DLND3YDQQRWVRIUPL2G5UKXP5L3VSBBT/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DTOMYERG5ND4QFDHC4ZSGCED3T3ESRSC/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FBZQ2ZRMFEUQ35235B2HWPSXGDCBZHFV/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GD2GSBQTBLYADASUBHHZV2CZPTSLIPQJ/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QFXMF3VVKIZN7ZMB7PKZCSWV6MOMTGMQ/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SFVSMR7TNLO2KPWJSW4CF64C2QMQXCIN/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-354\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-3727\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-05-14T15:42:07.060\",\"lastModified\":\"2025-02-25T08:15:29.150\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una falla en la librer\u00eda github.com/containers/image. Esta falla permite a los atacantes activar accesos inesperados al registro autenticado en nombre de un usuario v\u00edctima, lo que provoca agotamiento de recursos, path traversal local y otros ataques.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H\",\"baseScore\":8.3,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.6,\"impactScore\":6.0}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-354\"}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2024:0045\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3718\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4159\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4613\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4850\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4960\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:5258\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:5951\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:6054\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:6122\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:6708\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:6818\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:6824\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:7164\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:7174\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:7182\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:7187\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:7922\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:7941\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:8260\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:8425\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:9097\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:9098\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:9102\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:9960\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-3727\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2274767\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:0045\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4159\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:4613\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-3727\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2274767\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4HEYS34N55G7NOQZKNEXZKQVNDGEICCD/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6B37TXOKTKDBE2V26X2NSP7JKNMZOFVP/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CYT3D2P3OJKISNFKOOHGY6HCUCQZYAVR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DLND3YDQQRWVRIUPL2G5UKXP5L3VSBBT/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DTOMYERG5ND4QFDHC4ZSGCED3T3ESRSC/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FBZQ2ZRMFEUQ35235B2HWPSXGDCBZHFV/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GD2GSBQTBLYADASUBHHZV2CZPTSLIPQJ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QFXMF3VVKIZN7ZMB7PKZCSWV6MOMTGMQ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SFVSMR7TNLO2KPWJSW4CF64C2QMQXCIN/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:0045\", \"name\": \"RHSA-2024:0045\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4159\", \"name\": \"RHSA-2024:4159\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4613\", \"name\": \"RHSA-2024:4613\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-3727\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2274767\", \"name\": \"RHBZ#2274767\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4HEYS34N55G7NOQZKNEXZKQVNDGEICCD/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6B37TXOKTKDBE2V26X2NSP7JKNMZOFVP/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CYT3D2P3OJKISNFKOOHGY6HCUCQZYAVR/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DLND3YDQQRWVRIUPL2G5UKXP5L3VSBBT/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DTOMYERG5ND4QFDHC4ZSGCED3T3ESRSC/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FBZQ2ZRMFEUQ35235B2HWPSXGDCBZHFV/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GD2GSBQTBLYADASUBHHZV2CZPTSLIPQJ/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QFXMF3VVKIZN7ZMB7PKZCSWV6MOMTGMQ/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SFVSMR7TNLO2KPWJSW4CF64C2QMQXCIN/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-01T20:20:01.029Z\"}}, {\"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-3727\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-13T17:59:41.318223Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-13T18:00:15.184Z\"}, \"title\": \"CISA ADP Vulnrichment\"}], \"cna\": {\"title\": \"Containers/image: digest type does not guarantee valid type\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Moderate\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 8.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.29.3\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"5.30.0\", \"lessThan\": \"5.30.1\", \"versionType\": \"semver\"}], \"packageName\": \"image\", \"collectionURL\": \"https://github.com/containers/image\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_api_data_protection:1.3::el9\"], \"vendor\": \"Red Hat\", \"product\": \"OADP-1.3-RHEL-9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1.3.4-9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"oadp/oadp-velero-plugin-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-central-db-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-collector-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-collector-slim-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-main-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-3\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-operator-bundle\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-rhel8-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-roxctl-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-db-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-3\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-db-slim-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-slim-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-3\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-v4-db-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.4::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.4\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.4.5-3\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-v4-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-central-db-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-collector-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-collector-slim-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-main-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-operator-bundle\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-rhel8-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-roxctl-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-db-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-db-slim-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-1\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-slim-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-v4-db-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.5::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 4.5\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4.5.2-2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"advanced-cluster-security/rhacs-scanner-v4-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8100020240808093819.afee755d\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"container-tools:rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.37.2-1.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.16.1-1.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:5.2.2-1.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhmt:1.8::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Migration Toolkit for Containers 1.8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v1.8.4-22\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhmtc/openshift-migration-controller-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\", \"cpe:/a:redhat:openshift_ironic:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-13.rhaos4.13.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el8\", \"cpe:/a:redhat:openshift:4.13::el9\", \"cpe:/a:redhat:openshift_ironic:4.13::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.11.3-3.rhaos4.13.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.14.0-202407260439.p0.g8d9b39e.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-operator-lifecycle-manager\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\", \"cpe:/a:redhat:openshift_ironic:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-19.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\", \"cpe:/a:redhat:openshift_ironic:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.11.3-3.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409172305.p0.g17536c8.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/network-tools-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409171307.p0.ged4651a.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-agent-installer-api-server-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409161436.p0.g1f44c02.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-agent-installer-node-agent-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409120135.p0.gf7f5eed.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-alibaba-machine-controllers-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409131835.p0.gadccbd5.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-apiserver-network-proxy-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409120135.p0.g8425d88.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-cluster-autoscaler-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409130735.p0.gc03231f.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-cluster-control-plane-machine-set-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409131635.p0.gb73e37f.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-cluster-ingress-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409161836.p0.g092d15b.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-cluster-network-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409180105.p0.g1fdd5b0.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-cluster-node-tuning-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409180905.p0.gf6f61ca.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-console\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409171307.p0.g160e7ca.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-docker-builder\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409131635.p0.gb7c1d6a.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-hypershift-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409111636.p0.gf0c44f6.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-insights-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409120135.p0.g3ab953d.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-machine-api-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409111636.p0.g9ea52de.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-multus-admission-controller-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409111636.p0.gd80fe46.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-multus-whereabouts-ipam-cni-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409120135.p0.g8de6f94.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-nutanix-machine-controllers-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409171307.p0.g5d529dd.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-openshift-controller-manager-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409180305.p0.g1da79fe.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-operator-lifecycle-manager-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409180305.p0.g1da79fe.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-operator-registry-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409172305.p0.g5af0be8.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-ovn-kubernetes-microshift-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409172305.p0.g5af0be8.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-ovn-kubernetes-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409130536.p0.g1d6a7ed.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-powervs-cloud-controller-manager-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409161436.p0.g4121cfc.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-powervs-machine-controllers-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409120135.p0.g71a6f28.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-sdn-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409180705.p0.g95ee44e.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-tests\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202409161234.p0.g4e8d689.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-tools-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"415.92.202409162258-0\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"rhcos\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift_ironic:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-30.rhaos4.15.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift_ironic:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.11.3-4.rhaos4.15.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202410230304.p0.g366295f.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-agent-installer-node-agent-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202410230304.p0.gfde2b2e.assembly.stream.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-agent-installer-orchestrator-rhel8\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el8\", \"cpe:/a:redhat:openshift:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.0-202407230407.p0.gf3f8de5.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-operator-lifecycle-manager-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.16::el8\", \"cpe:/a:redhat:openshift:4.16::el9\", \"cpe:/a:redhat:openshift_ironic:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.16\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4:4.9.4-5.1.rhaos4.16.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.16::el8\", \"cpe:/a:redhat:openshift:4.16::el9\", \"cpe:/a:redhat:openshift_ironic:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.16\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:1.14.4-1.rhaos4.16.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.16::el8\", \"cpe:/a:redhat:openshift:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.16\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:1.29.5-7.rhaos4.16.git7db4ada.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"cri-o\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.16\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.16.0-202407171536.p0.g1551101.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-operator-lifecycle-manager-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.16\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.16.0-202409162206.p0.g6a425ab.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-machine-config-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.16\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.16.0-202409231504.p0.g342902b.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-agent-installer-orchestrator-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.16::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.16\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.16.0-202410172201.p0.gb121e87.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-agent-installer-node-agent-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.17\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.17.0-202409122005.p0.gb170ad0.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-machine-config-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.17\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.17.0-202409100034.p0.g8d16b39.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-olm-operator-controller-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.17\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.17.0-202409101338.p0.gb0d86a0.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-operator-lifecycle-manager-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.17\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.17.0-202409101338.p0.gb0d86a0.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-operator-registry-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.17::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.17\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.17.0-202410022234.p0.gfbc55c6.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-agent-installer-orchestrator-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.18\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.18.0-202502100934.p0.gc00c7c9.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/oc-mirror-plugin-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.18\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.18.0-202502040032.p0.ge5a4005.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-agent-installer-api-server-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.18\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.18.0-202502041302.p0.g51a74ac.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-agent-installer-node-agent-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.18\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.18.0-202501230001.p0.g5348c85.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-agent-installer-orchestrator-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.18\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.18.0-202502100153.p0.g120ba67.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-machine-config-rhel9-operator\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.18::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.18\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.18.0-202502060238.p0.g73d65db.assembly.stream.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"openshift4/ose-openshift-apiserver-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4.15::el9\"], \"vendor\": \"Red Hat\", \"product\": \"RHEL-9-CNV-4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"v4.15.5-7\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"container-native-virtualization/virt-cdi-controller-rhel9\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"packageName\": \"multicluster-engine/agent-service-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"packageName\": \"multicluster-engine/assisted-installer-agent-rhel9\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"packageName\": \"multicluster-engine/assisted-installer-reporter-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"packageName\": \"multicluster-engine/assisted-installer-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:multicluster_engine\"], \"vendor\": \"Red Hat\", \"product\": \"Multicluster Engine for Kubernetes\", \"packageName\": \"multicluster-engine-hive-container\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:ocp_tools\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Developer Tools and Services\", \"packageName\": \"ocp-tools-4/jenkins-agent-base-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ocp_tools\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Developer Tools and Services\", \"packageName\": \"ocp-tools-4/jenkins-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:serverless:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Serverless\", \"packageName\": \"openshift-serverless-1/client-kn-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:serverless:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Serverless\", \"packageName\": \"openshift-serverless-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:source_to_image:1\"], \"vendor\": \"Red Hat\", \"product\": \"OpenShift Source-to-Image (S2I)\", \"packageName\": \"source-to-image-container\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:acm:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Management for Kubernetes 2\", \"packageName\": \"rhacm2/submariner-rhel8-operator\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 3\", \"packageName\": \"advanced-cluster-security/rhacs-central-db-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 3\", \"packageName\": \"advanced-cluster-security/rhacs-main-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 3\", \"packageName\": \"advanced-cluster-security/rhacs-rhel8-operator\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 3\", \"packageName\": \"advanced-cluster-security/rhacs-roxctl-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 3\", \"packageName\": \"advanced-cluster-security/rhacs-scanner-db-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 3\", \"packageName\": \"advanced-cluster-security/rhacs-scanner-db-slim-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 3\", \"packageName\": \"advanced-cluster-security/rhacs-scanner-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security 3\", \"packageName\": \"advanced-cluster-security/rhacs-scanner-slim-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 1.2\", \"packageName\": \"openshift-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_automation_platform:2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Ansible Automation Platform 2\", \"packageName\": \"openshift-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"conmon\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"containers-common\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"osbuild-composer\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:10\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 10\", \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/conmon\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/containers-common\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"container-tools:4.0/skopeo\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"packageName\": \"osbuild-composer\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"conmon\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"containers-common\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"osbuild-composer\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:3.11\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 3.11\", \"packageName\": \"atomic-openshift\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:3.11\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 3.11\", \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"conmon\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"containers-common\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-agent-installer-csr-approver-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-baremetal-installer-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-cli\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-cli-artifacts\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-deployer\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-installer\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-installer-altinfra-rhel9\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-installer-artifacts-rhel9\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-olm-rukpak-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift4/ose-openshift-proxy-pull-test-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"openshift-clients\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4\", \"packageName\": \"ose-installer-terraform-providers-container\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:assisted_installer:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform Assisted Installer 1\", \"packageName\": \"rhai-tech-preview/assisted-installer-agent-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:assisted_installer:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform Assisted Installer 1\", \"packageName\": \"rhai-tech-preview/assisted-installer-reporter-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:assisted_installer:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform Assisted Installer 1\", \"packageName\": \"rhai-tech-preview/assisted-installer-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_devspaces:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Dev Spaces\", \"packageName\": \"devspaces/udi-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_sandboxed_containers:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Sandboxed Containers\", \"packageName\": \"openshift-sandboxed-containers/osc-must-gather-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_sandboxed_containers:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Sandboxed Containers\", \"packageName\": \"openshift-sandboxed-containers/osc-rhel9-operator\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-apiserver\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-apiserver-rhel9\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-cloner\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-cloner-rhel9\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-controller\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-importer\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-importer-rhel9\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-operator\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-operator-rhel9\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-uploadproxy\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-uploadproxy-rhel9\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-uploadserver\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"packageName\": \"container-native-virtualization/virt-cdi-uploadserver-rhel9\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openstack:16.2\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenStack Platform 16.2\", \"packageName\": \"osp-director-provisioner-container\", \"collectionURL\": \"https://catalog.redhat.com/software/containers/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:quay:3\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Quay 3\", \"packageName\": \"quay/quay-builder-rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-04-12T00:00:00.000Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2024-05-09T00:00:00.000Z\", \"value\": \"Made public.\"}], \"datePublic\": \"2024-05-09T00:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:0045\", \"name\": \"RHSA-2024:0045\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3718\", \"name\": \"RHSA-2024:3718\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4159\", \"name\": \"RHSA-2024:4159\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4613\", \"name\": \"RHSA-2024:4613\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4850\", \"name\": \"RHSA-2024:4850\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:4960\", \"name\": \"RHSA-2024:4960\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:5258\", \"name\": \"RHSA-2024:5258\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:5951\", \"name\": \"RHSA-2024:5951\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:6054\", \"name\": \"RHSA-2024:6054\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:6122\", \"name\": \"RHSA-2024:6122\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:6708\", \"name\": \"RHSA-2024:6708\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:6818\", \"name\": \"RHSA-2024:6818\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:6824\", \"name\": \"RHSA-2024:6824\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7164\", \"name\": \"RHSA-2024:7164\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7174\", \"name\": \"RHSA-2024:7174\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7182\", \"name\": \"RHSA-2024:7182\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7187\", \"name\": \"RHSA-2024:7187\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7922\", \"name\": \"RHSA-2024:7922\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:7941\", \"name\": \"RHSA-2024:7941\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:8260\", \"name\": \"RHSA-2024:8260\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:8425\", \"name\": \"RHSA-2024:8425\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:9097\", \"name\": \"RHSA-2024:9097\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:9098\", \"name\": \"RHSA-2024:9098\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:9102\", \"name\": \"RHSA-2024:9102\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:9960\", \"name\": \"RHSA-2024:9960\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-3727\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2274767\", \"name\": \"RHBZ#2274767\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}], \"x_generator\": {\"engine\": \"cvelib 1.8.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-354\", \"description\": \"Improper Validation of Integrity Check Value\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2026-06-02T17:34:35.670Z\"}, \"x_redhatCweChain\": \"CWE-354: Improper Validation of Integrity Check Value\"}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-3727\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-06-02T17:34:35.670Z\", \"dateReserved\": \"2024-04-12T17:56:37.261Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2024-05-09T14:57:21.327Z\", \"assignerShortName\": \"redhat\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
SUSE-SU-2024:1988-1
Vulnerability from csaf_suse - Published: 2024-06-11 11:49 - Updated: 2024-06-11 11:49Summary
Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer
Severity
Important
Notes
Title of the patch: Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer
Description of the patch: This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues:
Rebuild against current updated packages and go compiler.
- Bump github.com/containers/image/v5 (bsc#1224119, CVE-2024-3727)
- Add LABEL with source URL
Patchnames: SUSE-2024-1988,SUSE-SLE-Micro-5.5-2024-1988,SUSE-SLE-Module-Containers-15-SP5-2024-1988,openSUSE-SLE-15.5-2024-1988
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.3 (High)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:containerized-data-importer-api-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:containerized-data-importer-cloner-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:containerized-data-importer-controller-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:containerized-data-importer-importer-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:containerized-data-importer-operator-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:containerized-data-importer-uploadproxy-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:containerized-data-importer-uploadserver-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:obs-service-cdi_containers_meta-1.58.0-150500.6.15.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues:\n\nRebuild against current updated packages and go compiler.\n\n- Bump github.com/containers/image/v5 (bsc#1224119, CVE-2024-3727)\n- Add LABEL with source URL\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1988,SUSE-SLE-Micro-5.5-2024-1988,SUSE-SLE-Module-Containers-15-SP5-2024-1988,openSUSE-SLE-15.5-2024-1988",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1988-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1988-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241988-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1988-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-June/035547.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224119",
"url": "https://bugzilla.suse.com/1224119"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer",
"tracking": {
"current_release_date": "2024-06-11T11:49:29Z",
"generator": {
"date": "2024-06-11T11:49:29Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1988-1",
"initial_release_date": "2024-06-11T11:49:29Z",
"revision_history": [
{
"date": "2024-06-11T11:49:29Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "containerized-data-importer-api-1.58.0-150500.6.15.1.x86_64",
"product": {
"name": "containerized-data-importer-api-1.58.0-150500.6.15.1.x86_64",
"product_id": "containerized-data-importer-api-1.58.0-150500.6.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-cloner-1.58.0-150500.6.15.1.x86_64",
"product": {
"name": "containerized-data-importer-cloner-1.58.0-150500.6.15.1.x86_64",
"product_id": "containerized-data-importer-cloner-1.58.0-150500.6.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-controller-1.58.0-150500.6.15.1.x86_64",
"product": {
"name": "containerized-data-importer-controller-1.58.0-150500.6.15.1.x86_64",
"product_id": "containerized-data-importer-controller-1.58.0-150500.6.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-importer-1.58.0-150500.6.15.1.x86_64",
"product": {
"name": "containerized-data-importer-importer-1.58.0-150500.6.15.1.x86_64",
"product_id": "containerized-data-importer-importer-1.58.0-150500.6.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"product": {
"name": "containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"product_id": "containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-operator-1.58.0-150500.6.15.1.x86_64",
"product": {
"name": "containerized-data-importer-operator-1.58.0-150500.6.15.1.x86_64",
"product_id": "containerized-data-importer-operator-1.58.0-150500.6.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-uploadproxy-1.58.0-150500.6.15.1.x86_64",
"product": {
"name": "containerized-data-importer-uploadproxy-1.58.0-150500.6.15.1.x86_64",
"product_id": "containerized-data-importer-uploadproxy-1.58.0-150500.6.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-uploadserver-1.58.0-150500.6.15.1.x86_64",
"product": {
"name": "containerized-data-importer-uploadserver-1.58.0-150500.6.15.1.x86_64",
"product_id": "containerized-data-importer-uploadserver-1.58.0-150500.6.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "obs-service-cdi_containers_meta-1.58.0-150500.6.15.1.x86_64",
"product": {
"name": "obs-service-cdi_containers_meta-1.58.0-150500.6.15.1.x86_64",
"product_id": "obs-service-cdi_containers_meta-1.58.0-150500.6.15.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-api-1.58.0-150500.6.15.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:containerized-data-importer-api-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "containerized-data-importer-api-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-cloner-1.58.0-150500.6.15.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:containerized-data-importer-cloner-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "containerized-data-importer-cloner-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-controller-1.58.0-150500.6.15.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:containerized-data-importer-controller-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "containerized-data-importer-controller-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-importer-1.58.0-150500.6.15.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:containerized-data-importer-importer-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "containerized-data-importer-importer-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-operator-1.58.0-150500.6.15.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:containerized-data-importer-operator-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "containerized-data-importer-operator-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-uploadproxy-1.58.0-150500.6.15.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:containerized-data-importer-uploadproxy-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "containerized-data-importer-uploadproxy-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-uploadserver-1.58.0-150500.6.15.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:containerized-data-importer-uploadserver-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "containerized-data-importer-uploadserver-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-cdi_containers_meta-1.58.0-150500.6.15.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:obs-service-cdi_containers_meta-1.58.0-150500.6.15.1.x86_64"
},
"product_reference": "obs-service-cdi_containers_meta-1.58.0-150500.6.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-api-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-cloner-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-controller-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-importer-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-operator-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-uploadproxy-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-uploadserver-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:obs-service-cdi_containers_meta-1.58.0-150500.6.15.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-api-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-cloner-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-controller-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-importer-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-operator-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-uploadproxy-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-uploadserver-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:obs-service-cdi_containers_meta-1.58.0-150500.6.15.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-api-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-cloner-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-controller-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-importer-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-manifests-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-operator-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-uploadproxy-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:containerized-data-importer-uploadserver-1.58.0-150500.6.15.1.x86_64",
"openSUSE Leap 15.5:obs-service-cdi_containers_meta-1.58.0-150500.6.15.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-11T11:49:29Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
SUSE-SU-2024:1989-1
Vulnerability from csaf_suse - Published: 2024-06-11 11:49 - Updated: 2024-06-11 11:49Summary
Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer
Severity
Important
Notes
Title of the patch: Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer
Description of the patch: This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues:
- Bump github.com/containers/image/v5 (bsc#1224119, CVE-2024-3727)
- Remove SLE15 SP4 from the distro check (end of general support)
- Add LABEL with source URL
Patchnames: SUSE-2024-1989,SUSE-SLE-Module-Containers-15-SP6-2024-1989,openSUSE-SLE-15.6-2024-1989
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.3 (High)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:containerized-data-importer-api-1.58.0-150600.3.3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:containerized-data-importer-cloner-1.58.0-150600.3.3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:containerized-data-importer-controller-1.58.0-150600.3.3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:containerized-data-importer-importer-1.58.0-150600.3.3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:containerized-data-importer-operator-1.58.0-150600.3.3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:containerized-data-importer-uploadproxy-1.58.0-150600.3.3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:containerized-data-importer-uploadserver-1.58.0-150600.3.3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:obs-service-cdi_containers_meta-1.58.0-150600.3.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues:\n\n- Bump github.com/containers/image/v5 (bsc#1224119, CVE-2024-3727)\n- Remove SLE15 SP4 from the distro check (end of general support)\n- Add LABEL with source URL\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1989,SUSE-SLE-Module-Containers-15-SP6-2024-1989,openSUSE-SLE-15.6-2024-1989",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1989-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1989-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241989-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1989-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-June/035546.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224119",
"url": "https://bugzilla.suse.com/1224119"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer",
"tracking": {
"current_release_date": "2024-06-11T11:49:48Z",
"generator": {
"date": "2024-06-11T11:49:48Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1989-1",
"initial_release_date": "2024-06-11T11:49:48Z",
"revision_history": [
{
"date": "2024-06-11T11:49:48Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "containerized-data-importer-api-1.58.0-150600.3.3.2.x86_64",
"product": {
"name": "containerized-data-importer-api-1.58.0-150600.3.3.2.x86_64",
"product_id": "containerized-data-importer-api-1.58.0-150600.3.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-cloner-1.58.0-150600.3.3.2.x86_64",
"product": {
"name": "containerized-data-importer-cloner-1.58.0-150600.3.3.2.x86_64",
"product_id": "containerized-data-importer-cloner-1.58.0-150600.3.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-controller-1.58.0-150600.3.3.2.x86_64",
"product": {
"name": "containerized-data-importer-controller-1.58.0-150600.3.3.2.x86_64",
"product_id": "containerized-data-importer-controller-1.58.0-150600.3.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-importer-1.58.0-150600.3.3.2.x86_64",
"product": {
"name": "containerized-data-importer-importer-1.58.0-150600.3.3.2.x86_64",
"product_id": "containerized-data-importer-importer-1.58.0-150600.3.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64",
"product": {
"name": "containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64",
"product_id": "containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-operator-1.58.0-150600.3.3.2.x86_64",
"product": {
"name": "containerized-data-importer-operator-1.58.0-150600.3.3.2.x86_64",
"product_id": "containerized-data-importer-operator-1.58.0-150600.3.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-uploadproxy-1.58.0-150600.3.3.2.x86_64",
"product": {
"name": "containerized-data-importer-uploadproxy-1.58.0-150600.3.3.2.x86_64",
"product_id": "containerized-data-importer-uploadproxy-1.58.0-150600.3.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "containerized-data-importer-uploadserver-1.58.0-150600.3.3.2.x86_64",
"product": {
"name": "containerized-data-importer-uploadserver-1.58.0-150600.3.3.2.x86_64",
"product_id": "containerized-data-importer-uploadserver-1.58.0-150600.3.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "obs-service-cdi_containers_meta-1.58.0-150600.3.3.2.x86_64",
"product": {
"name": "obs-service-cdi_containers_meta-1.58.0-150600.3.3.2.x86_64",
"product_id": "obs-service-cdi_containers_meta-1.58.0-150600.3.3.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64"
},
"product_reference": "containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-api-1.58.0-150600.3.3.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:containerized-data-importer-api-1.58.0-150600.3.3.2.x86_64"
},
"product_reference": "containerized-data-importer-api-1.58.0-150600.3.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-cloner-1.58.0-150600.3.3.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:containerized-data-importer-cloner-1.58.0-150600.3.3.2.x86_64"
},
"product_reference": "containerized-data-importer-cloner-1.58.0-150600.3.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-controller-1.58.0-150600.3.3.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:containerized-data-importer-controller-1.58.0-150600.3.3.2.x86_64"
},
"product_reference": "containerized-data-importer-controller-1.58.0-150600.3.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-importer-1.58.0-150600.3.3.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:containerized-data-importer-importer-1.58.0-150600.3.3.2.x86_64"
},
"product_reference": "containerized-data-importer-importer-1.58.0-150600.3.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64"
},
"product_reference": "containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-operator-1.58.0-150600.3.3.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:containerized-data-importer-operator-1.58.0-150600.3.3.2.x86_64"
},
"product_reference": "containerized-data-importer-operator-1.58.0-150600.3.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-uploadproxy-1.58.0-150600.3.3.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:containerized-data-importer-uploadproxy-1.58.0-150600.3.3.2.x86_64"
},
"product_reference": "containerized-data-importer-uploadproxy-1.58.0-150600.3.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerized-data-importer-uploadserver-1.58.0-150600.3.3.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:containerized-data-importer-uploadserver-1.58.0-150600.3.3.2.x86_64"
},
"product_reference": "containerized-data-importer-uploadserver-1.58.0-150600.3.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "obs-service-cdi_containers_meta-1.58.0-150600.3.3.2.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:obs-service-cdi_containers_meta-1.58.0-150600.3.3.2.x86_64"
},
"product_reference": "obs-service-cdi_containers_meta-1.58.0-150600.3.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP6:containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-api-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-cloner-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-controller-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-importer-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-operator-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-uploadproxy-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-uploadserver-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:obs-service-cdi_containers_meta-1.58.0-150600.3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP6:containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-api-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-cloner-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-controller-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-importer-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-operator-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-uploadproxy-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-uploadserver-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:obs-service-cdi_containers_meta-1.58.0-150600.3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP6:containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-api-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-cloner-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-controller-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-importer-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-manifests-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-operator-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-uploadproxy-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:containerized-data-importer-uploadserver-1.58.0-150600.3.3.2.x86_64",
"openSUSE Leap 15.6:obs-service-cdi_containers_meta-1.58.0-150600.3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-11T11:49:48Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
SUSE-SU-2024:2031-1
Vulnerability from csaf_suse - Published: 2024-06-14 11:06 - Updated: 2024-06-14 11:06Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- Update to version 4.9.5
- CVE-2024-3727: Fixed a flaw that allowed attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks. (bsc#1224122)
- CVE-2024-24786: Fixed an infinite loop in protojson. (bsc#1226136)
Patchnames: SUSE-2024-2031,SUSE-SLE-Micro-5.5-2024-2031,SUSE-SLE-Module-Containers-15-SP5-2024-2031,SUSE-SLE-Module-Containers-15-SP6-2024-2031,openSUSE-SLE-15.5-2024-2031,openSUSE-SLE-15.6-2024-2031
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
62 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.9.5-150500.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-docker-4.9.5-150500.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.3 (High)
Affected products
Recommended
62 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.9.5-150500.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-docker-4.9.5-150500.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
12 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- Update to version 4.9.5\n- CVE-2024-3727: Fixed a flaw that allowed attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks. (bsc#1224122)\n- CVE-2024-24786: Fixed an infinite loop in protojson. (bsc#1226136)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2031,SUSE-SLE-Micro-5.5-2024-2031,SUSE-SLE-Module-Containers-15-SP5-2024-2031,SUSE-SLE-Module-Containers-15-SP6-2024-2031,openSUSE-SLE-15.5-2024-2031,openSUSE-SLE-15.6-2024-2031",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2031-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2031-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242031-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2031-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018720.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224122",
"url": "https://bugzilla.suse.com/1224122"
},
{
"category": "self",
"summary": "SUSE Bug 1226136",
"url": "https://bugzilla.suse.com/1226136"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2024-06-14T11:06:24Z",
"generator": {
"date": "2024-06-14T11:06:24Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2031-1",
"initial_release_date": "2024-06-14T11:06:24Z",
"revision_history": [
{
"date": "2024-06-14T11:06:24Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150500.3.12.1.aarch64",
"product": {
"name": "podman-4.9.5-150500.3.12.1.aarch64",
"product_id": "podman-4.9.5-150500.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150500.3.12.1.aarch64",
"product": {
"name": "podman-remote-4.9.5-150500.3.12.1.aarch64",
"product_id": "podman-remote-4.9.5-150500.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150500.3.12.1.aarch64",
"product": {
"name": "podmansh-4.9.5-150500.3.12.1.aarch64",
"product_id": "podmansh-4.9.5-150500.3.12.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150500.3.12.1.i586",
"product": {
"name": "podman-4.9.5-150500.3.12.1.i586",
"product_id": "podman-4.9.5-150500.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150500.3.12.1.i586",
"product": {
"name": "podman-remote-4.9.5-150500.3.12.1.i586",
"product_id": "podman-remote-4.9.5-150500.3.12.1.i586"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150500.3.12.1.i586",
"product": {
"name": "podmansh-4.9.5-150500.3.12.1.i586",
"product_id": "podmansh-4.9.5-150500.3.12.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4.9.5-150500.3.12.1.noarch",
"product": {
"name": "podman-docker-4.9.5-150500.3.12.1.noarch",
"product_id": "podman-docker-4.9.5-150500.3.12.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150500.3.12.1.ppc64le",
"product": {
"name": "podman-4.9.5-150500.3.12.1.ppc64le",
"product_id": "podman-4.9.5-150500.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150500.3.12.1.ppc64le",
"product": {
"name": "podman-remote-4.9.5-150500.3.12.1.ppc64le",
"product_id": "podman-remote-4.9.5-150500.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150500.3.12.1.ppc64le",
"product": {
"name": "podmansh-4.9.5-150500.3.12.1.ppc64le",
"product_id": "podmansh-4.9.5-150500.3.12.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150500.3.12.1.s390x",
"product": {
"name": "podman-4.9.5-150500.3.12.1.s390x",
"product_id": "podman-4.9.5-150500.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150500.3.12.1.s390x",
"product": {
"name": "podman-remote-4.9.5-150500.3.12.1.s390x",
"product_id": "podman-remote-4.9.5-150500.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150500.3.12.1.s390x",
"product": {
"name": "podmansh-4.9.5-150500.3.12.1.s390x",
"product_id": "podmansh-4.9.5-150500.3.12.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150500.3.12.1.x86_64",
"product": {
"name": "podman-4.9.5-150500.3.12.1.x86_64",
"product_id": "podman-4.9.5-150500.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150500.3.12.1.x86_64",
"product": {
"name": "podman-remote-4.9.5-150500.3.12.1.x86_64",
"product_id": "podman-remote-4.9.5-150500.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150500.3.12.1.x86_64",
"product": {
"name": "podmansh-4.9.5-150500.3.12.1.x86_64",
"product_id": "podmansh-4.9.5-150500.3.12.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podman-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.12.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.12.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.12.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podman-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podman-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.12.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.9.5-150500.3.12.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.12.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podman-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podman-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.12.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.12.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.12.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podman-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podman-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.12.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-docker-4.9.5-150500.3.12.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.12.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podman-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podman-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podman-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150500.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podman-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150500.3.12.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.12.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150500.3.12.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150500.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.aarch64"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.ppc64le"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.s390x"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.9.5-150500.3.12.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.x86_64"
},
"product_reference": "podmansh-4.9.5-150500.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24786"
}
],
"notes": [
{
"category": "general",
"text": "The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24786",
"url": "https://www.suse.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "SUSE Bug 1226136 for CVE-2024-24786",
"url": "https://bugzilla.suse.com/1226136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-14T11:06:24Z",
"details": "important"
}
],
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-docker-4.9.5-150500.3.12.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.5:podmansh-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podman-docker-4.9.5-150500.3.12.1.noarch",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podman-remote-4.9.5-150500.3.12.1.x86_64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.aarch64",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.ppc64le",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.s390x",
"openSUSE Leap 15.6:podmansh-4.9.5-150500.3.12.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-14T11:06:24Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
SUSE-SU-2024:2050-1
Vulnerability from csaf_suse - Published: 2024-07-15 05:48 - Updated: 2024-07-15 05:48Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- Update to version 4.9.5
- CVE-2024-3727: Fixed a flaw that allowed attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks. (bsc#1224122)
- CVE-2024-24786: Fixed an infinite loop in protojson. (bsc#1226136)
Patchnames: SUSE-2024-2050,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2050,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2050,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2050,SUSE-SUSE-MicroOS-5.1-2024-2050,SUSE-SUSE-MicroOS-5.2-2024-2050,SUSE-Storage-7.1-2024-2050
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.3 (High)
Affected products
Recommended
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
12 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- Update to version 4.9.5\n- CVE-2024-3727: Fixed a flaw that allowed attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks. (bsc#1224122)\n- CVE-2024-24786: Fixed an infinite loop in protojson. (bsc#1226136)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2050,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2050,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2050,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2050,SUSE-SUSE-MicroOS-5.1-2024-2050,SUSE-SUSE-MicroOS-5.2-2024-2050,SUSE-Storage-7.1-2024-2050",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2050-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2050-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242050-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2050-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018733.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224122",
"url": "https://bugzilla.suse.com/1224122"
},
{
"category": "self",
"summary": "SUSE Bug 1226136",
"url": "https://bugzilla.suse.com/1226136"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2024-07-15T05:48:24Z",
"generator": {
"date": "2024-07-15T05:48:24Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2050-1",
"initial_release_date": "2024-07-15T05:48:24Z",
"revision_history": [
{
"date": "2024-07-15T05:48:24Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.31.1.aarch64",
"product": {
"name": "podman-4.9.5-150300.9.31.1.aarch64",
"product_id": "podman-4.9.5-150300.9.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"product": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"product_id": "podman-remote-4.9.5-150300.9.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.31.1.aarch64",
"product": {
"name": "podmansh-4.9.5-150300.9.31.1.aarch64",
"product_id": "podmansh-4.9.5-150300.9.31.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.31.1.i586",
"product": {
"name": "podman-4.9.5-150300.9.31.1.i586",
"product_id": "podman-4.9.5-150300.9.31.1.i586"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.31.1.i586",
"product": {
"name": "podman-remote-4.9.5-150300.9.31.1.i586",
"product_id": "podman-remote-4.9.5-150300.9.31.1.i586"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.31.1.i586",
"product": {
"name": "podmansh-4.9.5-150300.9.31.1.i586",
"product_id": "podmansh-4.9.5-150300.9.31.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4.9.5-150300.9.31.1.noarch",
"product": {
"name": "podman-docker-4.9.5-150300.9.31.1.noarch",
"product_id": "podman-docker-4.9.5-150300.9.31.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.31.1.ppc64le",
"product": {
"name": "podman-4.9.5-150300.9.31.1.ppc64le",
"product_id": "podman-4.9.5-150300.9.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.31.1.ppc64le",
"product": {
"name": "podman-remote-4.9.5-150300.9.31.1.ppc64le",
"product_id": "podman-remote-4.9.5-150300.9.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.31.1.ppc64le",
"product": {
"name": "podmansh-4.9.5-150300.9.31.1.ppc64le",
"product_id": "podmansh-4.9.5-150300.9.31.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.31.1.s390x",
"product": {
"name": "podman-4.9.5-150300.9.31.1.s390x",
"product_id": "podman-4.9.5-150300.9.31.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.31.1.s390x",
"product": {
"name": "podman-remote-4.9.5-150300.9.31.1.s390x",
"product_id": "podman-remote-4.9.5-150300.9.31.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.31.1.s390x",
"product": {
"name": "podmansh-4.9.5-150300.9.31.1.s390x",
"product_id": "podmansh-4.9.5-150300.9.31.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.31.1.x86_64",
"product": {
"name": "podman-4.9.5-150300.9.31.1.x86_64",
"product_id": "podman-4.9.5-150300.9.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"product": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"product_id": "podman-remote-4.9.5-150300.9.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.31.1.x86_64",
"product": {
"name": "podmansh-4.9.5-150300.9.31.1.x86_64",
"product_id": "podmansh-4.9.5-150300.9.31.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.2"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le"
},
"product_reference": "podman-4.9.5-150300.9.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le"
},
"product_reference": "podman-4.9.5-150300.9.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24786"
}
],
"notes": [
{
"category": "general",
"text": "The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24786",
"url": "https://www.suse.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "SUSE Bug 1226136 for CVE-2024-24786",
"url": "https://bugzilla.suse.com/1226136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-15T05:48:24Z",
"details": "important"
}
],
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-15T05:48:24Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
SUSE-SU-2024:2050-2
Vulnerability from csaf_suse - Published: 2024-07-15 05:48 - Updated: 2024-07-15 05:48Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- Update to version 4.9.5
- CVE-2024-3727: Fixed a flaw that allowed attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks. (bsc#1224122)
- CVE-2024-24786: Fixed an infinite loop in protojson. (bsc#1226136)
Patchnames: SUSE-2024-2050,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2050,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2050,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2050,SUSE-SUSE-MicroOS-5.1-2024-2050,SUSE-SUSE-MicroOS-5.2-2024-2050,SUSE-Storage-7.1-2024-2050
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.3 (High)
Affected products
Recommended
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
12 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- Update to version 4.9.5\n- CVE-2024-3727: Fixed a flaw that allowed attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks. (bsc#1224122)\n- CVE-2024-24786: Fixed an infinite loop in protojson. (bsc#1226136)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2050,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2050,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2050,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2050,SUSE-SUSE-MicroOS-5.1-2024-2050,SUSE-SUSE-MicroOS-5.2-2024-2050,SUSE-Storage-7.1-2024-2050",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2050-2.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2050-2",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242050-2/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2050-2",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018966.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224122",
"url": "https://bugzilla.suse.com/1224122"
},
{
"category": "self",
"summary": "SUSE Bug 1226136",
"url": "https://bugzilla.suse.com/1226136"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2024-07-15T05:48:24Z",
"generator": {
"date": "2024-07-15T05:48:24Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2050-2",
"initial_release_date": "2024-07-15T05:48:24Z",
"revision_history": [
{
"date": "2024-07-15T05:48:24Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.31.1.aarch64",
"product": {
"name": "podman-4.9.5-150300.9.31.1.aarch64",
"product_id": "podman-4.9.5-150300.9.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"product": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"product_id": "podman-remote-4.9.5-150300.9.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.31.1.aarch64",
"product": {
"name": "podmansh-4.9.5-150300.9.31.1.aarch64",
"product_id": "podmansh-4.9.5-150300.9.31.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.31.1.i586",
"product": {
"name": "podman-4.9.5-150300.9.31.1.i586",
"product_id": "podman-4.9.5-150300.9.31.1.i586"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.31.1.i586",
"product": {
"name": "podman-remote-4.9.5-150300.9.31.1.i586",
"product_id": "podman-remote-4.9.5-150300.9.31.1.i586"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.31.1.i586",
"product": {
"name": "podmansh-4.9.5-150300.9.31.1.i586",
"product_id": "podmansh-4.9.5-150300.9.31.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4.9.5-150300.9.31.1.noarch",
"product": {
"name": "podman-docker-4.9.5-150300.9.31.1.noarch",
"product_id": "podman-docker-4.9.5-150300.9.31.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.31.1.ppc64le",
"product": {
"name": "podman-4.9.5-150300.9.31.1.ppc64le",
"product_id": "podman-4.9.5-150300.9.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.31.1.ppc64le",
"product": {
"name": "podman-remote-4.9.5-150300.9.31.1.ppc64le",
"product_id": "podman-remote-4.9.5-150300.9.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.31.1.ppc64le",
"product": {
"name": "podmansh-4.9.5-150300.9.31.1.ppc64le",
"product_id": "podmansh-4.9.5-150300.9.31.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.31.1.s390x",
"product": {
"name": "podman-4.9.5-150300.9.31.1.s390x",
"product_id": "podman-4.9.5-150300.9.31.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.31.1.s390x",
"product": {
"name": "podman-remote-4.9.5-150300.9.31.1.s390x",
"product_id": "podman-remote-4.9.5-150300.9.31.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.31.1.s390x",
"product": {
"name": "podmansh-4.9.5-150300.9.31.1.s390x",
"product_id": "podmansh-4.9.5-150300.9.31.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150300.9.31.1.x86_64",
"product": {
"name": "podman-4.9.5-150300.9.31.1.x86_64",
"product_id": "podman-4.9.5-150300.9.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"product": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"product_id": "podman-remote-4.9.5-150300.9.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150300.9.31.1.x86_64",
"product": {
"name": "podmansh-4.9.5-150300.9.31.1.x86_64",
"product_id": "podmansh-4.9.5-150300.9.31.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.2"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le"
},
"product_reference": "podman-4.9.5-150300.9.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le"
},
"product_reference": "podman-4.9.5-150300.9.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150300.9.31.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150300.9.31.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150300.9.31.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24786"
}
],
"notes": [
{
"category": "general",
"text": "The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24786",
"url": "https://www.suse.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "SUSE Bug 1226136 for CVE-2024-24786",
"url": "https://bugzilla.suse.com/1226136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-15T05:48:24Z",
"details": "important"
}
],
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.31.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-15T05:48:24Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
SUSE-SU-2024:2090-1
Vulnerability from csaf_suse - Published: 2024-06-19 10:38 - Updated: 2024-06-19 10:38Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- Update to version 4.9.5
- CVE-2024-3727: Fixed a flaw that allowed attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks. (bsc#1224122)
- CVE-2024-24786: Fixed an infinite loop in protojson. (bsc#1226136)
Patchnames: SUSE-2024-2090,SUSE-SLE-Micro-5.3-2024-2090,SUSE-SLE-Micro-5.4-2024-2090,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2090,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2090,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2090,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2090,openSUSE-Leap-Micro-5.3-2024-2090,openSUSE-Leap-Micro-5.4-2024-2090
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
35 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.27.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.27.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.3 (High)
Affected products
Recommended
35 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.27.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.27.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
12 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- Update to version 4.9.5\n- CVE-2024-3727: Fixed a flaw that allowed attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks. (bsc#1224122)\n- CVE-2024-24786: Fixed an infinite loop in protojson. (bsc#1226136)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2090,SUSE-SLE-Micro-5.3-2024-2090,SUSE-SLE-Micro-5.4-2024-2090,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2090,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2090,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2090,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2090,openSUSE-Leap-Micro-5.3-2024-2090,openSUSE-Leap-Micro-5.4-2024-2090",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2090-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2090-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242090-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2090-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018757.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224122",
"url": "https://bugzilla.suse.com/1224122"
},
{
"category": "self",
"summary": "SUSE Bug 1226136",
"url": "https://bugzilla.suse.com/1226136"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2024-06-19T10:38:55Z",
"generator": {
"date": "2024-06-19T10:38:55Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2090-1",
"initial_release_date": "2024-06-19T10:38:55Z",
"revision_history": [
{
"date": "2024-06-19T10:38:55Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.27.1.aarch64",
"product": {
"name": "podman-4.9.5-150400.4.27.1.aarch64",
"product_id": "podman-4.9.5-150400.4.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.27.1.aarch64",
"product": {
"name": "podman-remote-4.9.5-150400.4.27.1.aarch64",
"product_id": "podman-remote-4.9.5-150400.4.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.27.1.aarch64",
"product": {
"name": "podmansh-4.9.5-150400.4.27.1.aarch64",
"product_id": "podmansh-4.9.5-150400.4.27.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.27.1.i586",
"product": {
"name": "podman-4.9.5-150400.4.27.1.i586",
"product_id": "podman-4.9.5-150400.4.27.1.i586"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.27.1.i586",
"product": {
"name": "podman-remote-4.9.5-150400.4.27.1.i586",
"product_id": "podman-remote-4.9.5-150400.4.27.1.i586"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.27.1.i586",
"product": {
"name": "podmansh-4.9.5-150400.4.27.1.i586",
"product_id": "podmansh-4.9.5-150400.4.27.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4.9.5-150400.4.27.1.noarch",
"product": {
"name": "podman-docker-4.9.5-150400.4.27.1.noarch",
"product_id": "podman-docker-4.9.5-150400.4.27.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.27.1.ppc64le",
"product": {
"name": "podman-4.9.5-150400.4.27.1.ppc64le",
"product_id": "podman-4.9.5-150400.4.27.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.27.1.ppc64le",
"product": {
"name": "podman-remote-4.9.5-150400.4.27.1.ppc64le",
"product_id": "podman-remote-4.9.5-150400.4.27.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.27.1.ppc64le",
"product": {
"name": "podmansh-4.9.5-150400.4.27.1.ppc64le",
"product_id": "podmansh-4.9.5-150400.4.27.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.27.1.s390x",
"product": {
"name": "podman-4.9.5-150400.4.27.1.s390x",
"product_id": "podman-4.9.5-150400.4.27.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.27.1.s390x",
"product": {
"name": "podman-remote-4.9.5-150400.4.27.1.s390x",
"product_id": "podman-remote-4.9.5-150400.4.27.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.27.1.s390x",
"product": {
"name": "podmansh-4.9.5-150400.4.27.1.s390x",
"product_id": "podmansh-4.9.5-150400.4.27.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.27.1.x86_64",
"product": {
"name": "podman-4.9.5-150400.4.27.1.x86_64",
"product_id": "podman-4.9.5-150400.4.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.27.1.x86_64",
"product": {
"name": "podman-remote-4.9.5-150400.4.27.1.x86_64",
"product_id": "podman-remote-4.9.5-150400.4.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.27.1.x86_64",
"product": {
"name": "podmansh-4.9.5-150400.4.27.1.x86_64",
"product_id": "podmansh-4.9.5-150400.4.27.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap Micro 5.3",
"product": {
"name": "openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap Micro 5.4",
"product": {
"name": "openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap-micro:5.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.s390x"
},
"product_reference": "podman-4.9.5-150400.4.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.s390x"
},
"product_reference": "podman-4.9.5-150400.4.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.27.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.27.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.27.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.27.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.27.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.ppc64le"
},
"product_reference": "podman-4.9.5-150400.4.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.s390x"
},
"product_reference": "podman-4.9.5-150400.4.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.27.1.noarch as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.27.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.27.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.27.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150400.4.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.27.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150400.4.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.27.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.ppc64le"
},
"product_reference": "podman-4.9.5-150400.4.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.27.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.27.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.27.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.27.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150400.4.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.27.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.aarch64 as component of openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.aarch64",
"relates_to_product_reference": "openSUSE Leap Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.x86_64 as component of openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.aarch64 as component of openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.aarch64",
"relates_to_product_reference": "openSUSE Leap Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.s390x as component of openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.s390x"
},
"product_reference": "podman-4.9.5-150400.4.27.1.s390x",
"relates_to_product_reference": "openSUSE Leap Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.27.1.x86_64 as component of openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.27.1.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-24786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24786"
}
],
"notes": [
{
"category": "general",
"text": "The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24786",
"url": "https://www.suse.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "SUSE Bug 1226136 for CVE-2024-24786",
"url": "https://bugzilla.suse.com/1226136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-19T10:38:55Z",
"details": "important"
}
],
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.27.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.3:podman-4.9.5-150400.4.27.1.x86_64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.aarch64",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.s390x",
"openSUSE Leap Micro 5.4:podman-4.9.5-150400.4.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-19T10:38:55Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
SUSE-SU-2024:2383-1
Vulnerability from csaf_suse - Published: 2024-07-10 11:55 - Updated: 2024-07-10 11:55Summary
Security update for skopeo
Severity
Important
Notes
Title of the patch: Security update for skopeo
Description of the patch: This update for skopeo fixes the following issues:
- CVE-2024-3727: Added missing image digest verification (bsc#1224123).
Patchnames: SUSE-2024-2383,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2383,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2383,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2383
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.3 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:skopeo-0.1.41-150000.4.23.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:skopeo-0.1.41-150000.4.23.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for skopeo",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for skopeo fixes the following issues:\n\n- CVE-2024-3727: Added missing image digest verification (bsc#1224123).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2383,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2383,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2383,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2383",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2383-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2383-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242383-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2383-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018918.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224123",
"url": "https://bugzilla.suse.com/1224123"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for skopeo",
"tracking": {
"current_release_date": "2024-07-10T11:55:43Z",
"generator": {
"date": "2024-07-10T11:55:43Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2383-1",
"initial_release_date": "2024-07-10T11:55:43Z",
"revision_history": [
{
"date": "2024-07-10T11:55:43Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "skopeo-0.1.41-150000.4.23.1.aarch64",
"product": {
"name": "skopeo-0.1.41-150000.4.23.1.aarch64",
"product_id": "skopeo-0.1.41-150000.4.23.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-0.1.41-150000.4.23.1.i586",
"product": {
"name": "skopeo-0.1.41-150000.4.23.1.i586",
"product_id": "skopeo-0.1.41-150000.4.23.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-0.1.41-150000.4.23.1.ppc64le",
"product": {
"name": "skopeo-0.1.41-150000.4.23.1.ppc64le",
"product_id": "skopeo-0.1.41-150000.4.23.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-0.1.41-150000.4.23.1.s390x",
"product": {
"name": "skopeo-0.1.41-150000.4.23.1.s390x",
"product_id": "skopeo-0.1.41-150000.4.23.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-0.1.41-150000.4.23.1.x86_64",
"product": {
"name": "skopeo-0.1.41-150000.4.23.1.x86_64",
"product_id": "skopeo-0.1.41-150000.4.23.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-0.1.41-150000.4.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.aarch64"
},
"product_reference": "skopeo-0.1.41-150000.4.23.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-0.1.41-150000.4.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.x86_64"
},
"product_reference": "skopeo-0.1.41-150000.4.23.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-0.1.41-150000.4.23.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.aarch64"
},
"product_reference": "skopeo-0.1.41-150000.4.23.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-0.1.41-150000.4.23.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.ppc64le"
},
"product_reference": "skopeo-0.1.41-150000.4.23.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-0.1.41-150000.4.23.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.s390x"
},
"product_reference": "skopeo-0.1.41-150000.4.23.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-0.1.41-150000.4.23.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.x86_64"
},
"product_reference": "skopeo-0.1.41-150000.4.23.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-0.1.41-150000.4.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:skopeo-0.1.41-150000.4.23.1.ppc64le"
},
"product_reference": "skopeo-0.1.41-150000.4.23.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-0.1.41-150000.4.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:skopeo-0.1.41-150000.4.23.1.x86_64"
},
"product_reference": "skopeo-0.1.41-150000.4.23.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:skopeo-0.1.41-150000.4.23.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:skopeo-0.1.41-150000.4.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:skopeo-0.1.41-150000.4.23.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:skopeo-0.1.41-150000.4.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:skopeo-0.1.41-150000.4.23.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:skopeo-0.1.41-150000.4.23.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:skopeo-0.1.41-150000.4.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-10T11:55:43Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
SUSE-SU-2024:2548-1
Vulnerability from csaf_suse - Published: 2024-07-17 21:36 - Updated: 2024-07-17 21:36Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- CVE-2024-3727: Fixed digest type does not guarantee valid type in containers/image (bsc#1224122)
Patchnames: SUSE-2024-2548,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2548,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2548,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2548
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.3 (High)
Affected products
Recommended
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-cni-config-2.1.1-150100.4.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:podman-cni-config-2.1.1-150100.4.31.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-2.1.1-150100.4.31.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-2.1.1-150100.4.31.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-cni-config-2.1.1-150100.4.31.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- CVE-2024-3727: Fixed digest type does not guarantee valid type in containers/image (bsc#1224122)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-2548,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-2548,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2548,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2548",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_2548-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:2548-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20242548-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:2548-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/018997.html"
},
{
"category": "self",
"summary": "SUSE Bug 1224122",
"url": "https://bugzilla.suse.com/1224122"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2024-07-17T21:36:00Z",
"generator": {
"date": "2024-07-17T21:36:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:2548-1",
"initial_release_date": "2024-07-17T21:36:00Z",
"revision_history": [
{
"date": "2024-07-17T21:36:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-2.1.1-150100.4.31.1.aarch64",
"product": {
"name": "podman-2.1.1-150100.4.31.1.aarch64",
"product_id": "podman-2.1.1-150100.4.31.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-2.1.1-150100.4.31.1.i586",
"product": {
"name": "podman-2.1.1-150100.4.31.1.i586",
"product_id": "podman-2.1.1-150100.4.31.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-cni-config-2.1.1-150100.4.31.1.noarch",
"product": {
"name": "podman-cni-config-2.1.1-150100.4.31.1.noarch",
"product_id": "podman-cni-config-2.1.1-150100.4.31.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-2.1.1-150100.4.31.1.ppc64le",
"product": {
"name": "podman-2.1.1-150100.4.31.1.ppc64le",
"product_id": "podman-2.1.1-150100.4.31.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-2.1.1-150100.4.31.1.s390x",
"product": {
"name": "podman-2.1.1-150100.4.31.1.s390x",
"product_id": "podman-2.1.1-150100.4.31.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-2.1.1-150100.4.31.1.x86_64",
"product": {
"name": "podman-2.1.1-150100.4.31.1.x86_64",
"product_id": "podman-2.1.1-150100.4.31.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2.1.1-150100.4.31.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.aarch64"
},
"product_reference": "podman-2.1.1-150100.4.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2.1.1-150100.4.31.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.x86_64"
},
"product_reference": "podman-2.1.1-150100.4.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-cni-config-2.1.1-150100.4.31.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-cni-config-2.1.1-150100.4.31.1.noarch"
},
"product_reference": "podman-cni-config-2.1.1-150100.4.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2.1.1-150100.4.31.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.aarch64"
},
"product_reference": "podman-2.1.1-150100.4.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2.1.1-150100.4.31.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.ppc64le"
},
"product_reference": "podman-2.1.1-150100.4.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2.1.1-150100.4.31.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.s390x"
},
"product_reference": "podman-2.1.1-150100.4.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2.1.1-150100.4.31.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.x86_64"
},
"product_reference": "podman-2.1.1-150100.4.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-cni-config-2.1.1-150100.4.31.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:podman-cni-config-2.1.1-150100.4.31.1.noarch"
},
"product_reference": "podman-cni-config-2.1.1-150100.4.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2.1.1-150100.4.31.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-2.1.1-150100.4.31.1.ppc64le"
},
"product_reference": "podman-2.1.1-150100.4.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-2.1.1-150100.4.31.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-2.1.1-150100.4.31.1.x86_64"
},
"product_reference": "podman-2.1.1-150100.4.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-cni-config-2.1.1-150100.4.31.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-cni-config-2.1.1-150100.4.31.1.noarch"
},
"product_reference": "podman-cni-config-2.1.1-150100.4.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-cni-config-2.1.1-150100.4.31.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-cni-config-2.1.1-150100.4.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-2.1.1-150100.4.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-2.1.1-150100.4.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-cni-config-2.1.1-150100.4.31.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-cni-config-2.1.1-150100.4.31.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-cni-config-2.1.1-150100.4.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-2.1.1-150100.4.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-2.1.1-150100.4.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-cni-config-2.1.1-150100.4.31.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:podman-cni-config-2.1.1-150100.4.31.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-2.1.1-150100.4.31.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:podman-cni-config-2.1.1-150100.4.31.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-2.1.1-150100.4.31.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-2.1.1-150100.4.31.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-cni-config-2.1.1-150100.4.31.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-07-17T21:36:00Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
SUSE-SU-2024:3120-1
Vulnerability from csaf_suse - Published: 2024-09-03 15:13 - Updated: 2024-09-03 15:13Summary
Security update for buildah, docker
Severity
Critical
Notes
Title of the patch: Security update for buildah, docker
Description of the patch: This update for buildah, docker fixes the following issues:
Changes in docker:
- CVE-2024-23651: Fixed arbitrary files write due to race condition on mounts (bsc#1219267)
- CVE-2024-23652: Fixed insufficient validation of parent directory on mount (bsc#1219268)
- CVE-2024-23653: Fixed insufficient validation on entitlement on container creation via buildkit (bsc#1219438)
- CVE-2024-41110: A Authz zero length regression that could lead to authentication bypass was fixed (bsc#1228324)
Other fixes:
- Update to Docker 25.0.6-ce. See upstream changelog online at
<https://docs.docker.com/engine/release-notes/25.0/#2506>
- Update to Docker 25.0.5-ce (bsc#1223409)
- Fix BuildKit's symlink resolution logic to correctly handle non-lexical
symlinks. (bsc#1221916)
- Write volume options atomically so sudden system crashes won't result in
future Docker starts failing due to empty files. (bsc#1214855)
Changes in buildah:
- Update to version 1.35.4:
* [release-1.35] Bump to Buildah v1.35.4
* [release-1.35] CVE-2024-3727 updates (bsc#1224117)
* integration test: handle new labels in 'bud and test --unsetlabel'
* [release-1.35] Bump go-jose CVE-2024-28180
* [release-1.35] Bump ocicrypt and go-jose CVE-2024-28180
- Update to version 1.35.3:
* [release-1.35] Bump to Buildah v1.35.3
* [release-1.35] correctly configure /etc/hosts and resolv.conf
* [release-1.35] buildah: refactor resolv/hosts setup.
* [release-1.35] rename the hostFile var to reflect
* [release-1.35] Bump c/common to v0.58.1
* [release-1.35] Bump Buildah to v1.35.2
* [release-1.35] CVE-2024-24786 protobuf to 1.33
* [release-1.35] Bump to v1.35.2-dev
- Update to version 1.35.1:
* [release-1.35] Bump to v1.35.1
* [release-1.35] CVE-2024-1753 container escape fix (bsc#1221677)
- Buildah dropped cni support, require netavark instead (bsc#1221243)
- Remove obsolete requires libcontainers-image & libcontainers-storage
- Require passt for rootless networking (poo#156955)
Buildah moved to passt/pasta for rootless networking from slirp4netns
(https://github.com/containers/common/pull/1846)
- Update to version 1.35.0:
* Bump v1.35.0
* Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0
* conformance tests: don't break on trailing zeroes in layer blobs
* Add a conformance test for copying to a mounted prior stage
* fix(deps): update module github.com/stretchr/testify to v1.9.0
* cgroups: reuse version check from c/common
* Update vendor of containers/(common,image)
* fix(deps): update github.com/containers/storage digest to eadc620
* fix(deps): update github.com/containers/luksy digest to ceb12d4
* fix(deps): update github.com/containers/image/v5 digest to cdc6802
* manifest add: complain if we get artifact flags without --artifact
* Use retry logic from containers/common
* Vendor in containers/(storage,image,common)
* Update module golang.org/x/crypto to v0.20.0
* Add comment re: Total Success task name
* tests: skip_if_no_unshare(): check for --setuid
* Properly handle build --pull=false
* [skip-ci] Update tim-actions/get-pr-commits action to v1.3.1
* Update module go.etcd.io/bbolt to v1.3.9
* Revert 'Reduce official image size'
* Update module github.com/opencontainers/image-spec to v1.1.0
* Reduce official image size
* Build with CNI support on FreeBSD
* build --all-platforms: skip some base 'image' platforms
* Bump main to v1.35.0-dev
* Vendor in latest containers/(storage,image,common)
* Split up error messages for missing --sbom related flags
* `buildah manifest`: add artifact-related options
* cmd/buildah/manifest.go: lock lists before adding/annotating/pushing
* cmd/buildah/manifest.go: don't make struct declarations aliases
* Use golang.org/x/exp/slices.Contains
* Disable loong64 again
* Fix a couple of typos in one-line comments
* egrep is obsolescent; use grep -E
* Try Cirrus with a newer VM version
* Set CONTAINERS_CONF in the chroot-mount-flags integration test
* Update to match dependency API update
* Update github.com/openshift/imagebuilder and containers/common
* docs: correct default authfile path
* fix(deps): update module github.com/containerd/containerd to v1.7.13
* tests: retrofit test for heredoc summary
* build, heredoc: show heredoc summary in build output
* manifest, push: add support for --retry and --retry-delay
* fix(deps): update github.com/openshift/imagebuilder digest to b767bc3
* imagebuildah: fix crash with empty RUN
* fix(deps): update github.com/containers/luksy digest to b62d551
* fix(deps): update module github.com/opencontainers/runc to v1.1.12 [security]
* fix(deps): update module github.com/moby/buildkit to v0.12.5 [security]
* Make buildah match podman for handling of ulimits
* docs: move footnotes to where they're applicable
* Allow users to specify no-dereference
* Run codespell on code
* Fix FreeBSD version parsing
* Fix a build break on FreeBSD
* Remove a bad FROM line
* fix(deps): update module github.com/onsi/gomega to v1.31.1
* fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc6
* docs: use reversed logo for dark theme in README
* build,commit: add --sbom to scan and produce SBOMs when committing
* commit: force omitHistory if the parent has layers but no history
* docs: fix a couple of typos
* internal/mkcw.Archive(): handle extra image content
* stage_executor,heredoc: honor interpreter in heredoc
* stage_executor,layers: burst cache if heredoc content is changed
* fix(deps): update module golang.org/x/crypto to v0.18.0
* Replace map[K]bool with map[K]struct{} where it makes sense
* fix(deps): update module golang.org/x/sync to v0.6.0
* fix(deps): update module golang.org/x/term to v0.16.0
* Bump CI VMs
* Replace strings.SplitN with strings.Cut
* fix(deps): update github.com/containers/storage digest to ef81e9b
* fix(deps): update github.com/containers/image/v5 digest to 1b221d4
* fix(deps): update module github.com/fsouza/go-dockerclient to v1.10.1
* Document use of containers-transports values in buildah
* fix(deps): update module golang.org/x/crypto to v0.17.0 [security]
* chore(deps): update dependency containers/automation_images to v20231208
* manifest: addCompression use default from containers.conf
* commit: add a --add-file flag
* mkcw: populate the rootfs using an overlay
* chore(deps): update dependency containers/automation_images to v20230517
* [skip-ci] Update actions/stale action to v9
* fix(deps): update module github.com/containernetworking/plugins to v1.4.0
* fix(deps): update github.com/containers/image/v5 digest to 7a40fee
* Bump to v1.34.1-dev
* Ignore errors if label.Relabel returns ENOSUP
Patchnames: SUSE-2024-3120,SUSE-SLE-Micro-5.3-2024-3120,SUSE-SLE-Micro-5.4-2024-3120,SUSE-SLE-Micro-5.5-2024-3120,SUSE-SLE-Module-Containers-15-SP5-2024-3120,SUSE-SLE-Module-Containers-15-SP6-2024-3120,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-3120,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3120,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3120,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3120,SUSE-SUSE-MicroOS-5.1-2024-3120,SUSE-SUSE-MicroOS-5.2-2024-3120,SUSE-Storage-7.1-2024-3120,openSUSE-Leap-Micro-5.5-2024-3120,openSUSE-SLE-15.5-2024-3120,openSUSE-SLE-15.6-2024-3120
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.7 (Medium)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.3 (High)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.9 (Critical)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
References
38 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah, docker",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah, docker fixes the following issues:\n\nChanges in docker:\n- CVE-2024-23651: Fixed arbitrary files write due to race condition on mounts (bsc#1219267)\n- CVE-2024-23652: Fixed insufficient validation of parent directory on mount (bsc#1219268)\n- CVE-2024-23653: Fixed insufficient validation on entitlement on container creation via buildkit (bsc#1219438)\n- CVE-2024-41110: A Authz zero length regression that could lead to authentication bypass was fixed (bsc#1228324)\n\nOther fixes:\n\n- Update to Docker 25.0.6-ce. See upstream changelog online at\n \u003chttps://docs.docker.com/engine/release-notes/25.0/#2506\u003e\n- Update to Docker 25.0.5-ce (bsc#1223409)\n\n- Fix BuildKit\u0027s symlink resolution logic to correctly handle non-lexical\n symlinks. (bsc#1221916)\n- Write volume options atomically so sudden system crashes won\u0027t result in\n future Docker starts failing due to empty files. (bsc#1214855)\n\nChanges in buildah:\n- Update to version 1.35.4:\n * [release-1.35] Bump to Buildah v1.35.4\n * [release-1.35] CVE-2024-3727 updates (bsc#1224117)\n * integration test: handle new labels in \u0027bud and test --unsetlabel\u0027\n * [release-1.35] Bump go-jose CVE-2024-28180\n * [release-1.35] Bump ocicrypt and go-jose CVE-2024-28180\n\n- Update to version 1.35.3:\n * [release-1.35] Bump to Buildah v1.35.3\n * [release-1.35] correctly configure /etc/hosts and resolv.conf\n * [release-1.35] buildah: refactor resolv/hosts setup.\n * [release-1.35] rename the hostFile var to reflect\n * [release-1.35] Bump c/common to v0.58.1\n * [release-1.35] Bump Buildah to v1.35.2\n * [release-1.35] CVE-2024-24786 protobuf to 1.33\n * [release-1.35] Bump to v1.35.2-dev\n\n- Update to version 1.35.1:\n * [release-1.35] Bump to v1.35.1\n * [release-1.35] CVE-2024-1753 container escape fix (bsc#1221677)\n\n- Buildah dropped cni support, require netavark instead (bsc#1221243)\n\n- Remove obsolete requires libcontainers-image \u0026 libcontainers-storage\n\n- Require passt for rootless networking (poo#156955)\n Buildah moved to passt/pasta for rootless networking from slirp4netns\n (https://github.com/containers/common/pull/1846)\n\n- Update to version 1.35.0:\n * Bump v1.35.0\n * Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0\n * conformance tests: don\u0027t break on trailing zeroes in layer blobs\n * Add a conformance test for copying to a mounted prior stage\n * fix(deps): update module github.com/stretchr/testify to v1.9.0\n * cgroups: reuse version check from c/common\n * Update vendor of containers/(common,image)\n * fix(deps): update github.com/containers/storage digest to eadc620\n * fix(deps): update github.com/containers/luksy digest to ceb12d4\n * fix(deps): update github.com/containers/image/v5 digest to cdc6802\n * manifest add: complain if we get artifact flags without --artifact\n * Use retry logic from containers/common\n * Vendor in containers/(storage,image,common)\n * Update module golang.org/x/crypto to v0.20.0\n * Add comment re: Total Success task name\n * tests: skip_if_no_unshare(): check for --setuid\n * Properly handle build --pull=false\n * [skip-ci] Update tim-actions/get-pr-commits action to v1.3.1\n * Update module go.etcd.io/bbolt to v1.3.9\n * Revert \u0027Reduce official image size\u0027\n * Update module github.com/opencontainers/image-spec to v1.1.0\n * Reduce official image size\n * Build with CNI support on FreeBSD\n * build --all-platforms: skip some base \u0027image\u0027 platforms\n * Bump main to v1.35.0-dev\n * Vendor in latest containers/(storage,image,common)\n * Split up error messages for missing --sbom related flags\n * `buildah manifest`: add artifact-related options\n * cmd/buildah/manifest.go: lock lists before adding/annotating/pushing\n * cmd/buildah/manifest.go: don\u0027t make struct declarations aliases\n * Use golang.org/x/exp/slices.Contains\n * Disable loong64 again\n * Fix a couple of typos in one-line comments\n * egrep is obsolescent; use grep -E\n * Try Cirrus with a newer VM version\n * Set CONTAINERS_CONF in the chroot-mount-flags integration test\n * Update to match dependency API update\n * Update github.com/openshift/imagebuilder and containers/common\n * docs: correct default authfile path\n * fix(deps): update module github.com/containerd/containerd to v1.7.13\n * tests: retrofit test for heredoc summary\n * build, heredoc: show heredoc summary in build output\n * manifest, push: add support for --retry and --retry-delay\n * fix(deps): update github.com/openshift/imagebuilder digest to b767bc3\n * imagebuildah: fix crash with empty RUN\n * fix(deps): update github.com/containers/luksy digest to b62d551\n * fix(deps): update module github.com/opencontainers/runc to v1.1.12 [security]\n * fix(deps): update module github.com/moby/buildkit to v0.12.5 [security]\n * Make buildah match podman for handling of ulimits\n * docs: move footnotes to where they\u0027re applicable\n * Allow users to specify no-dereference\n * Run codespell on code\n * Fix FreeBSD version parsing\n * Fix a build break on FreeBSD\n * Remove a bad FROM line\n * fix(deps): update module github.com/onsi/gomega to v1.31.1\n * fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc6\n * docs: use reversed logo for dark theme in README\n * build,commit: add --sbom to scan and produce SBOMs when committing\n * commit: force omitHistory if the parent has layers but no history\n * docs: fix a couple of typos\n * internal/mkcw.Archive(): handle extra image content\n * stage_executor,heredoc: honor interpreter in heredoc\n * stage_executor,layers: burst cache if heredoc content is changed\n * fix(deps): update module golang.org/x/crypto to v0.18.0\n * Replace map[K]bool with map[K]struct{} where it makes sense\n * fix(deps): update module golang.org/x/sync to v0.6.0\n * fix(deps): update module golang.org/x/term to v0.16.0\n * Bump CI VMs\n * Replace strings.SplitN with strings.Cut\n * fix(deps): update github.com/containers/storage digest to ef81e9b\n * fix(deps): update github.com/containers/image/v5 digest to 1b221d4\n * fix(deps): update module github.com/fsouza/go-dockerclient to v1.10.1\n * Document use of containers-transports values in buildah\n * fix(deps): update module golang.org/x/crypto to v0.17.0 [security]\n * chore(deps): update dependency containers/automation_images to v20231208\n * manifest: addCompression use default from containers.conf\n * commit: add a --add-file flag\n * mkcw: populate the rootfs using an overlay\n * chore(deps): update dependency containers/automation_images to v20230517\n * [skip-ci] Update actions/stale action to v9\n * fix(deps): update module github.com/containernetworking/plugins to v1.4.0\n * fix(deps): update github.com/containers/image/v5 digest to 7a40fee\n * Bump to v1.34.1-dev\n * Ignore errors if label.Relabel returns ENOSUP\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-3120,SUSE-SLE-Micro-5.3-2024-3120,SUSE-SLE-Micro-5.4-2024-3120,SUSE-SLE-Micro-5.5-2024-3120,SUSE-SLE-Module-Containers-15-SP5-2024-3120,SUSE-SLE-Module-Containers-15-SP6-2024-3120,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-3120,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3120,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3120,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3120,SUSE-SUSE-MicroOS-5.1-2024-3120,SUSE-SUSE-MicroOS-5.2-2024-3120,SUSE-Storage-7.1-2024-3120,openSUSE-Leap-Micro-5.5-2024-3120,openSUSE-SLE-15.5-2024-3120,openSUSE-SLE-15.6-2024-3120",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3120-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:3120-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243120-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:3120-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-September/036751.html"
},
{
"category": "self",
"summary": "SUSE Bug 1214855",
"url": "https://bugzilla.suse.com/1214855"
},
{
"category": "self",
"summary": "SUSE Bug 1219267",
"url": "https://bugzilla.suse.com/1219267"
},
{
"category": "self",
"summary": "SUSE Bug 1219268",
"url": "https://bugzilla.suse.com/1219268"
},
{
"category": "self",
"summary": "SUSE Bug 1219438",
"url": "https://bugzilla.suse.com/1219438"
},
{
"category": "self",
"summary": "SUSE Bug 1221243",
"url": "https://bugzilla.suse.com/1221243"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE Bug 1221916",
"url": "https://bugzilla.suse.com/1221916"
},
{
"category": "self",
"summary": "SUSE Bug 1223409",
"url": "https://bugzilla.suse.com/1223409"
},
{
"category": "self",
"summary": "SUSE Bug 1224117",
"url": "https://bugzilla.suse.com/1224117"
},
{
"category": "self",
"summary": "SUSE Bug 1228324",
"url": "https://bugzilla.suse.com/1228324"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23651 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23652 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23652/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23653 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23653/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-28180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-28180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41110 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41110/"
}
],
"title": "Security update for buildah, docker",
"tracking": {
"current_release_date": "2024-09-03T15:13:23Z",
"generator": {
"date": "2024-09-03T15:13:23Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:3120-1",
"initial_release_date": "2024-09-03T15:13:23Z",
"revision_history": [
{
"date": "2024-09-03T15:13:23Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150300.8.25.1.aarch64",
"product": {
"name": "buildah-1.35.4-150300.8.25.1.aarch64",
"product_id": "buildah-1.35.4-150300.8.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-25.0.6_ce-150000.207.1.aarch64",
"product": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64",
"product_id": "docker-25.0.6_ce-150000.207.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150300.8.25.1.i586",
"product": {
"name": "buildah-1.35.4-150300.8.25.1.i586",
"product_id": "buildah-1.35.4-150300.8.25.1.i586"
}
},
{
"category": "product_version",
"name": "docker-25.0.6_ce-150000.207.1.i586",
"product": {
"name": "docker-25.0.6_ce-150000.207.1.i586",
"product_id": "docker-25.0.6_ce-150000.207.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"product": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"product_id": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"product": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"product_id": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"product": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"product_id": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"product": {
"name": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"product_id": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150300.8.25.1.ppc64le",
"product": {
"name": "buildah-1.35.4-150300.8.25.1.ppc64le",
"product_id": "buildah-1.35.4-150300.8.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-25.0.6_ce-150000.207.1.ppc64le",
"product": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le",
"product_id": "docker-25.0.6_ce-150000.207.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150300.8.25.1.s390x",
"product": {
"name": "buildah-1.35.4-150300.8.25.1.s390x",
"product_id": "buildah-1.35.4-150300.8.25.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-25.0.6_ce-150000.207.1.s390x",
"product": {
"name": "docker-25.0.6_ce-150000.207.1.s390x",
"product_id": "docker-25.0.6_ce-150000.207.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150300.8.25.1.x86_64",
"product": {
"name": "buildah-1.35.4-150300.8.25.1.x86_64",
"product_id": "buildah-1.35.4-150300.8.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-25.0.6_ce-150000.207.1.x86_64",
"product": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64",
"product_id": "docker-25.0.6_ce-150000.207.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.2"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap Micro 5.5",
"product": {
"name": "openSUSE Leap Micro 5.5",
"product_id": "openSUSE Leap Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of openSUSE Leap Micro 5.5",
"product_id": "openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "openSUSE Leap Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of openSUSE Leap Micro 5.5",
"product_id": "openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "openSUSE Leap Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of openSUSE Leap Micro 5.5",
"product_id": "openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
},
{
"cve": "CVE-2024-23651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23651"
}
],
"notes": [
{
"category": "general",
"text": "BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Two malicious build steps running in parallel sharing the same cache mounts with subpaths could cause a race condition that can lead to files from the host system being accessible to the build container. The issue has been fixed in v0.12.5. Workarounds include, avoiding using BuildKit frontend from an untrusted source or building an untrusted Dockerfile containing cache mounts with --mount=type=cache,source=... options.\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23651",
"url": "https://www.suse.com/security/cve/CVE-2024-23651"
},
{
"category": "external",
"summary": "SUSE Bug 1219267 for CVE-2024-23651",
"url": "https://bugzilla.suse.com/1219267"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "important"
}
],
"title": "CVE-2024-23651"
},
{
"cve": "CVE-2024-23652",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23652"
}
],
"notes": [
{
"category": "general",
"text": "BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for the mountpoints into removing a file outside the container, from the host system. The issue has been fixed in v0.12.5. Workarounds include avoiding using BuildKit frontends from an untrusted source or building an untrusted Dockerfile containing RUN --mount feature.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23652",
"url": "https://www.suse.com/security/cve/CVE-2024-23652"
},
{
"category": "external",
"summary": "SUSE Bug 1219268 for CVE-2024-23652",
"url": "https://bugzilla.suse.com/1219268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-23652"
},
{
"cve": "CVE-2024-23653",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23653"
}
],
"notes": [
{
"category": "general",
"text": "BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In addition to running containers as build steps, BuildKit also provides APIs for running interactive containers based on built images. It was possible to use these APIs to ask BuildKit to run a container with elevated privileges. Normally, running such containers is only allowed if special `security.insecure` entitlement is enabled both by buildkitd configuration and allowed by the user initializing the build request. The issue has been fixed in v0.12.5 . Avoid using BuildKit frontends from untrusted sources. \n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23653",
"url": "https://www.suse.com/security/cve/CVE-2024-23653"
},
{
"category": "external",
"summary": "SUSE Bug 1219438 for CVE-2024-23653",
"url": "https://bugzilla.suse.com/1219438"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "important"
}
],
"title": "CVE-2024-23653"
},
{
"cve": "CVE-2024-24786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24786"
}
],
"notes": [
{
"category": "general",
"text": "The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24786",
"url": "https://www.suse.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "SUSE Bug 1226136 for CVE-2024-24786",
"url": "https://bugzilla.suse.com/1226136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "important"
}
],
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-28180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-28180"
}
],
"notes": [
{
"category": "general",
"text": "Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-28180",
"url": "https://www.suse.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "SUSE Bug 1234984 for CVE-2024-28180",
"url": "https://bugzilla.suse.com/1234984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-28180"
},
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
},
{
"cve": "CVE-2024-41110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41110"
}
],
"notes": [
{
"category": "general",
"text": "Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain versions of Docker Engine, which could allow an attacker to bypass authorization plugins (AuthZ) under specific circumstances. The base likelihood of this being exploited is low.\n\nUsing a specially-crafted API request, an Engine API client could make the daemon forward the request or response to an authorization plugin without the body. In certain circumstances, the authorization plugin may allow a request which it would have otherwise denied if the body had been forwarded to it.\n\nA security issue was discovered In 2018, where an attacker could bypass AuthZ plugins using a specially crafted API request. This could lead to unauthorized actions, including privilege escalation. Although this issue was fixed in Docker Engine v18.09.1 in January 2019, the fix was not carried forward to later major versions, resulting in a regression. Anyone who depends on authorization plugins that introspect the request and/or response body to make access control decisions is potentially impacted.\n\nDocker EE v19.03.x and all versions of Mirantis Container Runtime are not vulnerable.\n\ndocker-ce v27.1.1 containes patches to fix the vulnerability. Patches have also been merged into the master, 19.03, 20.0, 23.0, 24.0, 25.0, 26.0, and 26.1 release branches. If one is unable to upgrade immediately, avoid using AuthZ plugins and/or restrict access to the Docker API to trusted parties, following the principle of least privilege.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41110",
"url": "https://www.suse.com/security/cve/CVE-2024-41110"
},
{
"category": "external",
"summary": "SUSE Bug 1228324 for CVE-2024-41110",
"url": "https://bugzilla.suse.com/1228324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.9,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "critical"
}
],
"title": "CVE-2024-41110"
}
]
}
SUSE-SU-2024:3151-1
Vulnerability from csaf_suse - Published: 2024-09-06 08:23 - Updated: 2024-09-06 08:23Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
Update to version 1.35.4:
* Bump to Buildah v1.35.4
* CVE-2024-3727 updates (bsc#1224117)
* integration test: handle new labels in 'bud and test --unsetlabel'
* Bump go-jose CVE-2024-28180
* Bump ocicrypt and go-jose CVE-2024-28180
Update to version 1.35.3:
* correctly configure /etc/hosts and resolv.conf
* buildah: refactor resolv/hosts setup.
* CVE-2024-24786 protobuf to 1.33
Update to version 1.35.1:
* CVE-2024-1753 container escape fix (bsc#1221677)
- Buildah dropped cni support, require netavark instead (bsc#1221243)
- Remove obsolete requires libcontainers-image & libcontainers-storage
- Require passt for rootless networking (poo#156955)
Buildah moved to passt/pasta for rootless networking from slirp4netns
(https://github.com/containers/common/pull/1846)
Update to version 1.35.0:
* Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0
* conformance tests: don't break on trailing zeroes in layer blobs
* Add a conformance test for copying to a mounted prior stage
* cgroups: reuse version check from c/common
* Update vendor of containers/(common,image)
* manifest add: complain if we get artifact flags without --artifact
* Use retry logic from containers/common
* Vendor in containers/(storage,image,common)
* Update module golang.org/x/crypto to v0.20.0
* Add comment re: Total Success task name
* tests: skip_if_no_unshare(): check for --setuid
* Properly handle build --pull=false
* [skip-ci] Update tim-actions/get-pr-commits action to v1.3.1
* Update module go.etcd.io/bbolt to v1.3.9
* Revert 'Reduce official image size'
* Update module github.com/opencontainers/image-spec to v1.1.0
* Reduce official image size
* Build with CNI support on FreeBSD
* build --all-platforms: skip some base 'image' platforms
* Bump main to v1.35.0-dev
* Vendor in latest containers/(storage,image,common)
* Split up error messages for missing --sbom related flags
* `buildah manifest`: add artifact-related options
* cmd/buildah/manifest.go: lock lists before adding/annotating/pushing
* cmd/buildah/manifest.go: don't make struct declarations aliases
* Use golang.org/x/exp/slices.Contains
* Disable loong64 again
* Fix a couple of typos in one-line comments
* egrep is obsolescent; use grep -E
* Try Cirrus with a newer VM version
* Set CONTAINERS_CONF in the chroot-mount-flags integration test
* Update to match dependency API update
* Update github.com/openshift/imagebuilder and containers/common
* docs: correct default authfile path
* tests: retrofit test for heredoc summary
* build, heredoc: show heredoc summary in build output
* manifest, push: add support for --retry and --retry-delay
* imagebuildah: fix crash with empty RUN
* Make buildah match podman for handling of ulimits
* docs: move footnotes to where they're applicable
* Allow users to specify no-dereference
* docs: use reversed logo for dark theme in README
* build,commit: add --sbom to scan and produce SBOMs when committing
* commit: force omitHistory if the parent has layers but no history
* docs: fix a couple of typos
* internal/mkcw.Archive(): handle extra image content
* stage_executor,heredoc: honor interpreter in heredoc
* stage_executor,layers: burst cache if heredoc content is changed
* Replace map[K]bool with map[K]struct{} where it makes sense
* Replace strings.SplitN with strings.Cut
* Document use of containers-transports values in buildah
* manifest: addCompression use default from containers.conf
* commit: add a --add-file flag
* mkcw: populate the rootfs using an overlay
* Ignore errors if label.Relabel returns ENOSUP
Patchnames: SUSE-2024-3151,SUSE-SLE-Module-Containers-15-SP5-2024-3151,SUSE-SLE-Module-Containers-15-SP6-2024-3151,openSUSE-SLE-15.5-2024-3151,openSUSE-SLE-15.6-2024-3151
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.3 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
19 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\nUpdate to version 1.35.4:\n\n* Bump to Buildah v1.35.4\n* CVE-2024-3727 updates (bsc#1224117)\n* integration test: handle new labels in \u0027bud and test --unsetlabel\u0027\n* Bump go-jose CVE-2024-28180\n* Bump ocicrypt and go-jose CVE-2024-28180\n\nUpdate to version 1.35.3:\n\n* correctly configure /etc/hosts and resolv.conf\n* buildah: refactor resolv/hosts setup.\n* CVE-2024-24786 protobuf to 1.33\n\n\nUpdate to version 1.35.1:\n\n* CVE-2024-1753 container escape fix (bsc#1221677)\n\n- Buildah dropped cni support, require netavark instead (bsc#1221243)\n\n- Remove obsolete requires libcontainers-image \u0026 libcontainers-storage\n\n- Require passt for rootless networking (poo#156955)\n Buildah moved to passt/pasta for rootless networking from slirp4netns\n (https://github.com/containers/common/pull/1846)\n\nUpdate to version 1.35.0:\n\n* Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0\n* conformance tests: don\u0027t break on trailing zeroes in layer blobs\n* Add a conformance test for copying to a mounted prior stage\n* cgroups: reuse version check from c/common\n* Update vendor of containers/(common,image)\n* manifest add: complain if we get artifact flags without --artifact\n* Use retry logic from containers/common\n* Vendor in containers/(storage,image,common)\n* Update module golang.org/x/crypto to v0.20.0\n* Add comment re: Total Success task name\n* tests: skip_if_no_unshare(): check for --setuid\n* Properly handle build --pull=false\n* [skip-ci] Update tim-actions/get-pr-commits action to v1.3.1\n* Update module go.etcd.io/bbolt to v1.3.9\n* Revert \u0027Reduce official image size\u0027\n* Update module github.com/opencontainers/image-spec to v1.1.0\n* Reduce official image size\n* Build with CNI support on FreeBSD\n* build --all-platforms: skip some base \u0027image\u0027 platforms\n* Bump main to v1.35.0-dev\n* Vendor in latest containers/(storage,image,common)\n* Split up error messages for missing --sbom related flags\n* `buildah manifest`: add artifact-related options\n* cmd/buildah/manifest.go: lock lists before adding/annotating/pushing\n* cmd/buildah/manifest.go: don\u0027t make struct declarations aliases\n* Use golang.org/x/exp/slices.Contains\n* Disable loong64 again\n* Fix a couple of typos in one-line comments\n* egrep is obsolescent; use grep -E\n* Try Cirrus with a newer VM version\n* Set CONTAINERS_CONF in the chroot-mount-flags integration test\n* Update to match dependency API update\n* Update github.com/openshift/imagebuilder and containers/common\n* docs: correct default authfile path\n* tests: retrofit test for heredoc summary\n* build, heredoc: show heredoc summary in build output\n* manifest, push: add support for --retry and --retry-delay\n* imagebuildah: fix crash with empty RUN\n* Make buildah match podman for handling of ulimits\n* docs: move footnotes to where they\u0027re applicable\n* Allow users to specify no-dereference\n* docs: use reversed logo for dark theme in README\n* build,commit: add --sbom to scan and produce SBOMs when committing\n* commit: force omitHistory if the parent has layers but no history\n* docs: fix a couple of typos\n* internal/mkcw.Archive(): handle extra image content\n* stage_executor,heredoc: honor interpreter in heredoc\n* stage_executor,layers: burst cache if heredoc content is changed\n* Replace map[K]bool with map[K]struct{} where it makes sense\n* Replace strings.SplitN with strings.Cut\n* Document use of containers-transports values in buildah\n* manifest: addCompression use default from containers.conf\n* commit: add a --add-file flag\n* mkcw: populate the rootfs using an overlay\n* Ignore errors if label.Relabel returns ENOSUP",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-3151,SUSE-SLE-Module-Containers-15-SP5-2024-3151,SUSE-SLE-Module-Containers-15-SP6-2024-3151,openSUSE-SLE-15.5-2024-3151,openSUSE-SLE-15.6-2024-3151",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3151-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:3151-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243151-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:3151-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-September/036812.html"
},
{
"category": "self",
"summary": "SUSE Bug 1221243",
"url": "https://bugzilla.suse.com/1221243"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE Bug 1224117",
"url": "https://bugzilla.suse.com/1224117"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-28180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-28180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2024-09-06T08:23:40Z",
"generator": {
"date": "2024-09-06T08:23:40Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:3151-1",
"initial_release_date": "2024-09-06T08:23:40Z",
"revision_history": [
{
"date": "2024-09-06T08:23:40Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150500.3.10.1.aarch64",
"product": {
"name": "buildah-1.35.4-150500.3.10.1.aarch64",
"product_id": "buildah-1.35.4-150500.3.10.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150500.3.10.1.i586",
"product": {
"name": "buildah-1.35.4-150500.3.10.1.i586",
"product_id": "buildah-1.35.4-150500.3.10.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150500.3.10.1.ppc64le",
"product": {
"name": "buildah-1.35.4-150500.3.10.1.ppc64le",
"product_id": "buildah-1.35.4-150500.3.10.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150500.3.10.1.s390x",
"product": {
"name": "buildah-1.35.4-150500.3.10.1.s390x",
"product_id": "buildah-1.35.4-150500.3.10.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150500.3.10.1.x86_64",
"product": {
"name": "buildah-1.35.4-150500.3.10.1.x86_64",
"product_id": "buildah-1.35.4-150500.3.10.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-06T08:23:40Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
},
{
"cve": "CVE-2024-24786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24786"
}
],
"notes": [
{
"category": "general",
"text": "The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24786",
"url": "https://www.suse.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "SUSE Bug 1226136 for CVE-2024-24786",
"url": "https://bugzilla.suse.com/1226136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-06T08:23:40Z",
"details": "important"
}
],
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-28180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-28180"
}
],
"notes": [
{
"category": "general",
"text": "Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-28180",
"url": "https://www.suse.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "SUSE Bug 1234984 for CVE-2024-28180",
"url": "https://bugzilla.suse.com/1234984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-06T08:23:40Z",
"details": "moderate"
}
],
"title": "CVE-2024-28180"
},
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-06T08:23:40Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…