Download
| Alert*
|
oval:org.secpod.oval:def:126472
pack is a CLI implementation of the Platform Interface Specification for Cloud Native Buildpacks. oval:org.secpod.oval:def:19500585 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:1701937 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:19500462 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:19500469 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:126758 Golang client for NATS, the cloud native messaging system. oval:org.secpod.oval:def:126510 JWT tokens signed using NKeys for Ed25519 for the NATS ecosystem. oval:org.secpod.oval:def:126511 A High Performance NATS Server written in Go and hosted by the Cloud Native Computing Foundation . oval:org.secpod.oval:def:126512 A public-key signature system based on Ed25519 for the NATS ecosystem. oval:org.secpod.oval:def:127326 Go parsers for web formats. oval:org.secpod.oval:def:126473 pack is a CLI implementation of the Platform Interface Specification for Cloud Native Buildpacks. oval:org.secpod.oval:def:127320 GNU command line argument parser. oval:org.secpod.oval:def:126474 Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is ret ... oval:org.secpod.oval:def:126475 Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is ret ... oval:org.secpod.oval:def:126750 Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how its transmitted over the Internet. Using syncthing, that control is retu ... oval:org.secpod.oval:def:127323 GNU command line argument parser. oval:org.secpod.oval:def:126483 Prometheus exporter for podman environments exposing containers, pods, images, volumes and networks information. oval:org.secpod.oval:def:19500474 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:19500503 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:126488 Prometheus exporter for podman environments exposing containers, pods, images, volumes and networks information. oval:org.secpod.oval:def:127335 Exercism provides a way to do the problems on https://exercism.io. This CLI ships as a binary with no additional run-time requirements. This means that if you're doing the Haskell problems on exercism you don't need a working Python or Ruby environment simply to fetch and submit exercises. oval:org.secpod.oval:def:1701893 Templates did not properly consider backticks as Javascript string delimiters, and as such didnot escape them as expected. Backticks are used, since ES6, for JS template literals. If a templatecontained a Go template action within a Javascript template literal, the contents of the action couldbe us ... oval:org.secpod.oval:def:126485 podman-tui is a terminal user interface for Podman v4. podman-tui is using podman.socket service to communicate with podman environment and SSH to connect to remote podman machines. oval:org.secpod.oval:def:126486 podman-tui is a terminal user interface for Podman v4. podman-tui is using podman.socket service to communicate with podman environment and SSH to connect to remote podman machines. oval:org.secpod.oval:def:1701915 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:1701919 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:1701920 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:126617 Go implementation of the Debug Adapter Protocol. oval:org.secpod.oval:def:126618 Go implementation of the Debug Adapter Protocol. oval:org.secpod.oval:def:1701889 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:126857 Declarative configuration for Gmail filters. oval:org.secpod.oval:def:1701888 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:126851 Declarative configuration for Gmail filters. oval:org.secpod.oval:def:126698 A High Performance NATS Server written in Go and hosted by the Cloud Native Computing Foundation . oval:org.secpod.oval:def:127024 Metas Time libraries. oval:org.secpod.oval:def:127025 Metas Time libraries. oval:org.secpod.oval:def:1701880 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:19500458 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:1701909 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:126508 Golang client for NATS, the cloud native messaging system. oval:org.secpod.oval:def:126509 NATS Streaming is an extremely performant, lightweight reliable streaming platform built on NATS oval:org.secpod.oval:def:1701879 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:127319 Minify is a minifier package written in Go. It provides HTML5, CSS3, JS, JSON, SVG and XML minifiers and an interface to implement any other minifier. Minification is the process of removing bytes from a file without changing its output and therefore shrinking its size and speeding up transmission ... oval:org.secpod.oval:def:1701910 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:1701877 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:127315 Minify is a minifier package written in Go. It provides HTML5, CSS3, JS, JSON, SVG and XML minifiers and an interface to implement any other minifier. Minification is the process of removing bytes from a file without changing its output and therefore shrinking its size and speeding up transmission ... oval:org.secpod.oval:def:127316 Go parsers for web formats. oval:org.secpod.oval:def:1701870 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:127009 This package holds supplementary Go networking libraries. oval:org.secpod.oval:def:1701866 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:127007 Text is a repository of text-related packages related to internationalization and localization , such as character encodings, text transformations, and locale-specific text handling. oval:org.secpod.oval:def:1702151 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:126551 Prometheus exporter for podman environments exposing containers, pods, images, volumes and networks information. oval:org.secpod.oval:def:126674 NATS Streaming is an extremely performant, lightweight reliable streaming platform built on NATS oval:org.secpod.oval:def:1701857 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:1702146 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:126567 JWT tokens signed using NKeys for Ed25519 for the NATS ecosystem. oval:org.secpod.oval:def:127012 This package holds supplementary Go networking libraries. oval:org.secpod.oval:def:127014 Text is a repository of text-related packages related to internationalization and localization , such as character encodings, text transformations, and locale-specific text handling. oval:org.secpod.oval:def:19500489 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:126533 Go implementation of the Debug Adapter Protocol. oval:org.secpod.oval:def:19500499 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:1701952 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:1601858 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023 oval:org.secpod.oval:def:126667 podman-tui is a terminal user interface for Podman v4. podman-tui is using podman.socket service to communicate with podman environment and SSH to connect to remote podman machines. oval:org.secpod.oval:def:126661 A public-key signature system based on Ed25519 for the NATS ecosystem. oval:org.secpod.oval:def:3301886 Security update for go1.21 oval:org.secpod.oval:def:508202 The rhc-worker-script packages provide Remote Host Configuration worker for executing an interpreted programming language script on hosts managed by Red Hat Insights. Security Fix: golang: net/http, x/net/http2: rapid stream resets can cause excessive work HTTP/2: Multiple HTTP/2 enabled web serv ... oval:org.secpod.oval:def:1507085 delve golang [1.19.13-1] - Rebase to Go 1.19.13 [CVE-2023-39325] [CVE-2023-44487] go-toolset [1.19.13-1] - Rebase to Go 1.19.13 [CVE-2023-39325] [CVE-2023-44487] oval:org.secpod.oval:def:508045 The rhel9/toolbox container image can be used with Toolbox to obtain RHEL based containerized command line environments to aid with development and software testing. Toolbox is built on top of Podman and other standard container technologies from OCI. This updates the rhel9/toolbox image in the Red ... oval:org.secpod.oval:def:1507093 golang [1.19.13-1] - Update to go 1.19.13 [CVE-2023-44487] [CVE-2023-39325] [CVE-2023-29409] go-toolset [1.19.13-1] - Update to Go version 1.19.13 oval:org.secpod.oval:def:94005 An update for grafana is now available for Red Hat Enterprise Linux 9. oval:org.secpod.oval:def:3301864 Security update for go1.20 oval:org.secpod.oval:def:4501496 Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fix: * golang: net/http, x/net/http2: rapid stream resets can cause excessive work [CVE-2023-44487] * HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack For ... oval:org.secpod.oval:def:5800214 Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. The golang packages provide the Go programming language compiler. Security Fix: * golang: net/http, x/net/http2: rapid stream resets can cause excessive work [CVE-2023-44487] * HTTP/2: Multiple ... oval:org.secpod.oval:def:2600344 Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. oval:org.secpod.oval:def:19500435 Line directives can be used to bypass the restrictions on "//go:cgo_" directives, allowing blocked linker and compiler flags to be passed during compilation. This can result in unexpected execution of arbitrary code when running "go build". The line directive requires the absolute path of the file ... oval:org.secpod.oval:def:1601837 Line directives can be used to bypass the restrictions on "//go:cgo_" directives, allowing blocked linker and compiler flags to be passed during compilation. This can result in unexpected execution of arbitrary code when running "go build". The line directive requires the absolute path of the file ... oval:org.secpod.oval:def:93999 An update for go-toolset and golang is now available for Red Hat Enterprise Linux 9. oval:org.secpod.oval:def:2600359 The rhel9/toolbox container image can be used with Toolbox to obtain AlmaLinux based containerized command line environments to aid with development and software testing. Toolbox is built on top of Podman and other standard container technologies from OCI. oval:org.secpod.oval:def:93992 An update for the go-toolset:rhel8 module is now available for Red Hat Enterprise Linux 8. oval:org.secpod.oval:def:2600352 Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB OpenTSDB. oval:org.secpod.oval:def:4501501 Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB OpenTSDB. Security Fix: * grafana: golang: net/http, x/net/http2: rapid stream resets can cause excessive work * HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack A Rocky En ... oval:org.secpod.oval:def:93995 An update for grafana is now available for Red Hat Enterprise Linux 8. oval:org.secpod.oval:def:126416 The Go Programming Language. oval:org.secpod.oval:def:126414 The Go Programming Language. oval:org.secpod.oval:def:3301943 Security update for go1.20-openssl oval:org.secpod.oval:def:1507103 [7.5.15-5] - Resolve CVE-2023-44487 Rapid Reset Attack - Resolve CVE-2023-39325 rapid stream resets can cause excessive work oval:org.secpod.oval:def:1701836 Line directives can be used to bypass the restrictions on "//go:cgo_" directives, allowing blocked linker and compiler flags to be passed during compilation. This can result in unexpected execution of arbitrary code when running "go build". The line directive requires the absolute path of the file ... oval:org.secpod.oval:def:1507100 [9.0.9-4] - Resolve CVE-2023-44487 Rapid Reset Attack - Resolve CVE-2023-39325 rapid stream resets can cause excessive work oval:org.secpod.oval:def:2501193 Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. oval:org.secpod.oval:def:2501198 Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB OpenTSDB. oval:org.secpod.oval:def:127562 gVisor is an open-source, OCI-compatible sandbox runtime that provides a virtualized container environment. It runs containers with a new user-space kernel, delivering a low overhead container security solution for high-density applications. gVisor integrates with Docker, containerd and Kubernetes, ... oval:org.secpod.oval:def:127565 gVisor is an open-source, OCI-compatible sandbox runtime that provides a virtualized container environment. It runs containers with a new user-space kernel, delivering a low overhead container security solution for high-density applications. gVisor integrates with Docker, containerd and Kubernetes, ... oval:org.secpod.oval:def:4501503 Rocky Enterprise Software Foundation Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fix: * golang: net/http, x/net/http2: rapid stream resets c ... oval:org.secpod.oval:def:19500582 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes f ... oval:org.secpod.oval:def:1702111 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. Text nodes not in the HTML namespace are incorrectly literally rendered, causing text which should be escaped to not be. This could le ... oval:org.secpod.oval:def:1702195 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes f ... oval:org.secpod.oval:def:1702061 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes f ... oval:org.secpod.oval:def:1702101 The HTTP/2 protocol allows a denial of service because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. Text nodes not in the HTML namespace are incorrectly literally rendered, causing text which should be escaped to not be. This could le ... oval:org.secpod.oval:def:708697 golang-1.20: Go programming language compiler - golang-1.21: Go programming language compiler Several security issues were fixed in Go. oval:org.secpod.oval:def:98655 golang-1.20: Go programming language compiler - golang-1.21: Go programming language compiler Several security issues were fixed in Go. oval:org.secpod.oval:def:3301762 Security update for go1.21-openssl oval:org.secpod.oval:def:127008 This packages holds packages for writing tools that work directly with Go module mechanics. That is, it is for direct manipulation of Go modules themselves. oval:org.secpod.oval:def:127011 This packages holds packages for writing tools that work directly with Go module mechanics. That is, it is for direct manipulation of Go modules themselves. oval:org.secpod.oval:def:127811 gVisor is an open-source, OCI-compatible sandbox runtime that provides a virtualized container environment. It runs containers with a new user-space kernel, delivering a low overhead container security solution for high-density applications. gVisor integrates with Docker, containerd and Kubernetes, ... |
