RLSA-2024:2548 --- podmanID: oval:org.secpod.oval:def:5800265 | Date: (C)2024-05-21 (M)2024-05-23 |
Class: PATCH | Family: unix |
The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fixes: * podman: golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON * podman: buildah: full container escape at build time For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fixes: * liveness probe not called by podman when using httpGet * Unable to copy image from one virtual machine to another using "podman image scp" * [v4.9] Backport two docker CLI compatibility fixes * Issue in podman causing S2I to fail in overwriting ENTRYPOINT * Need to backport podman fix for SIGSEGV in Rocky Linux 9.3/8.9 for UBI based containers