Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-1753 (GCVE-0-2024-1753)
Vulnerability from cvelistv5 – Published: 2024-03-18 14:23 – Updated: 2026-03-04 04:16
VLAI
EPSS
Title
Buildah: full container escape at build time
Summary
A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.
Severity
8.6 (High)
SSVC
Exploitation: poc
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-59 - Improper Link Resolution Before File Access ('Link Following')
Assigner
References
25 references
Impacted products
20 products
| Vendor | Product | Version | |
|---|---|---|---|
|
Affected:
4.15.0
|
|||
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
8090020240413110917.d7b6f4b7 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
8090020240417184044.e7857ab1 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
8100020240419145834.afee755d , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.6 Extended Update Support |
Unaffected:
8060020240422155330.3b538bd8 , < *
(rpm)
cpe:/a:redhat:rhel_eus:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.6 Extended Update Support |
Unaffected:
8060020240419071711.2e213529 , < *
(rpm)
cpe:/a:redhat:rhel_eus:8.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux 8.8 Extended Update Support |
Unaffected:
8080020240422101606.0f77c1b7 , < *
(rpm)
cpe:/a:redhat:rhel_eus:8.8::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
1:1.31.5-1.el9_3 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
4:4.9.4-3.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.0 Extended Update Support |
Unaffected:
1:1.26.7-1.el9_0 , < *
(rpm)
cpe:/a:redhat:rhel_eus:9.0::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.0 Extended Update Support |
Unaffected:
2:4.2.0-3.el9_0 , < *
(rpm)
cpe:/a:redhat:rhel_eus:9.0::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.2 Extended Update Support |
Unaffected:
1:1.29.3-1.el9_2 , < *
(rpm)
cpe:/a:redhat:rhel_eus:9.2::appstream |
|
| Red Hat | Red Hat Enterprise Linux 9.2 Extended Update Support |
Unaffected:
2:4.4.1-16.el9_2 , < *
(rpm)
cpe:/a:redhat:rhel_eus:9.2::appstream |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
Unaffected:
3:4.4.1-3.2.rhaos4.12.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.12::el8 cpe:/a:redhat:openshift:4.12::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
3:4.4.1-6.3.rhaos4.13.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el9 cpe:/a:redhat:openshift:4.13::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
Unaffected:
3:4.4.1-8.3.rhaos4.13.el9 , < *
(rpm)
cpe:/a:redhat:openshift:4.13::el9 cpe:/a:redhat:openshift:4.13::el8 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
Unaffected:
3:4.4.1-13.4.rhaos4.14.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.14::el8 cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
Unaffected:
3:4.4.1-23.2.rhaos4.15.el8 , < *
(rpm)
cpe:/a:redhat:openshift:4.15::el9 cpe:/a:redhat:openshift:4.15::el8 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat OpenShift Container Platform 3.11 |
cpe:/a:redhat:openshift:3.11 |
Date Public
2024-03-18 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-1753",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-05-02T15:05:28.144862Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-06-04T18:00:10.892Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-01T18:48:22.005Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2024:2049",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2049"
},
{
"name": "RHSA-2024:2055",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2055"
},
{
"name": "RHSA-2024:2064",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2064"
},
{
"name": "RHSA-2024:2066",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2066"
},
{
"name": "RHSA-2024:2077",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2077"
},
{
"name": "RHSA-2024:2084",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2084"
},
{
"name": "RHSA-2024:2089",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2089"
},
{
"name": "RHSA-2024:2090",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2090"
},
{
"name": "RHSA-2024:2097",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2097"
},
{
"name": "RHSA-2024:2098",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2098"
},
{
"name": "RHSA-2024:2548",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2548"
},
{
"name": "RHSA-2024:2645",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2645"
},
{
"name": "RHSA-2024:2669",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2669"
},
{
"name": "RHSA-2024:2672",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2672"
},
{
"name": "RHSA-2024:2784",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2784"
},
{
"name": "RHSA-2024:2877",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2877"
},
{
"name": "RHSA-2024:3254",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3254"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/security/cve/CVE-2024-1753"
},
{
"name": "RHBZ#2265513",
"tags": [
"issue-tracking",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265513"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/containers/buildah/security/advisories/GHSA-pmf3-c36m-g5cf"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/containers/podman/security/advisories/GHSA-874v-pj72-92f3"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FCRZVUDOFM5CPREQKBEU2VK2QK62PSBP/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KOYMVMQ7RWMDTSKQTBO734BE3WQPI2AJ/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZVBSVZGVABPYIHK5HZM472NPGWMI7WXH/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://github.com/openshift/builder/",
"defaultStatus": "unaffected",
"packageName": "buildah",
"versions": [
{
"status": "affected",
"version": "4.15.0"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "container-tools:4.0",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8090020240413110917.d7b6f4b7",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "container-tools:rhel8",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8090020240417184044.e7857ab1",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"packageName": "container-tools:rhel8",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8100020240419145834.afee755d",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:8.6::appstream"
],
"defaultStatus": "affected",
"packageName": "container-tools:rhel8",
"product": "Red Hat Enterprise Linux 8.6 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8060020240422155330.3b538bd8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:8.6::appstream"
],
"defaultStatus": "affected",
"packageName": "container-tools:4.0",
"product": "Red Hat Enterprise Linux 8.6 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8060020240419071711.2e213529",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:8.8::appstream"
],
"defaultStatus": "affected",
"packageName": "container-tools:rhel8",
"product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "8080020240422101606.0f77c1b7",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "buildah",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.31.5-1.el9_3",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "4:4.9.4-3.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:9.0::appstream"
],
"defaultStatus": "affected",
"packageName": "buildah",
"product": "Red Hat Enterprise Linux 9.0 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.26.7-1.el9_0",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:9.0::appstream"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 9.0 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:4.2.0-3.el9_0",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:9.2::appstream"
],
"defaultStatus": "affected",
"packageName": "buildah",
"product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "1:1.29.3-1.el9_2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:rhel_eus:9.2::appstream"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 9.2 Extended Update Support",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "2:4.4.1-16.el9_2",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.12::el8",
"cpe:/a:redhat:openshift:4.12::el9"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-3.2.rhaos4.12.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el9",
"cpe:/a:redhat:openshift:4.13::el8"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-6.3.rhaos4.13.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.13::el9",
"cpe:/a:redhat:openshift:4.13::el8"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-8.3.rhaos4.13.el9",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.14::el8",
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-13.4.rhaos4.14.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9",
"cpe:/a:redhat:openshift:4.15::el8"
],
"defaultStatus": "affected",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "3:4.4.1-23.2.rhaos4.15.el8",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unaffected",
"packageName": "buildah",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "podman",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:openshift:3.11"
],
"defaultStatus": "unknown",
"packageName": "podman",
"product": "Red Hat OpenShift Container Platform 3.11",
"vendor": "Red Hat"
}
],
"datePublic": "2024-03-18T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-59",
"description": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-04T04:16:07.393Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2024:2049",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2049"
},
{
"name": "RHSA-2024:2055",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2055"
},
{
"name": "RHSA-2024:2064",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2064"
},
{
"name": "RHSA-2024:2066",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2066"
},
{
"name": "RHSA-2024:2077",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2077"
},
{
"name": "RHSA-2024:2084",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2084"
},
{
"name": "RHSA-2024:2089",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2089"
},
{
"name": "RHSA-2024:2090",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2090"
},
{
"name": "RHSA-2024:2097",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2097"
},
{
"name": "RHSA-2024:2098",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2098"
},
{
"name": "RHSA-2024:2548",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2548"
},
{
"name": "RHSA-2024:2645",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2645"
},
{
"name": "RHSA-2024:2669",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2669"
},
{
"name": "RHSA-2024:2672",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2672"
},
{
"name": "RHSA-2024:2784",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2784"
},
{
"name": "RHSA-2024:2877",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2877"
},
{
"name": "RHSA-2024:3254",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3254"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2024-1753"
},
{
"name": "RHBZ#2265513",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265513"
},
{
"url": "https://github.com/containers/buildah/security/advisories/GHSA-pmf3-c36m-g5cf"
},
{
"url": "https://github.com/containers/podman/security/advisories/GHSA-874v-pj72-92f3"
},
{
"url": "https://pkg.go.dev/vuln/GO-2024-2658"
}
],
"timeline": [
{
"lang": "en",
"time": "2024-02-22T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2024-03-18T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Buildah: full container escape at build time",
"workarounds": [
{
"lang": "en",
"value": "When SELinux is enabled, the container is restricted to limited read-only access."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2024-1753",
"datePublished": "2024-03-18T14:23:44.213Z",
"dateReserved": "2024-02-22T14:42:20.623Z",
"dateUpdated": "2026-03-04T04:16:07.393Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2024-1753",
"date": "2026-06-06",
"epss": "0.00076",
"percentile": "0.22881"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2024-1753\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2024-03-18T15:15:41.170\",\"lastModified\":\"2024-11-26T20:15:26.237\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una falla en Buildah (y posteriormente en Podman Build) que permite que los contenedores monten ubicaciones arbitrarias en el sistema de archivos del host en contenedores de compilaci\u00f3n. Un Containerfile malicioso puede usar una imagen ficticia con un enlace simb\u00f3lico al sistema de archivos ra\u00edz como fuente de montaje y hacer que la operaci\u00f3n de montaje monte el sistema de archivos ra\u00edz del host dentro del paso RUN. Los comandos dentro del paso RUN tendr\u00e1n acceso de lectura y escritura al sistema de archivos del host, lo que permitir\u00e1 el escape completo del contenedor en el momento de la compilaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H\",\"baseScore\":8.6,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":6.0}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-59\"}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2049\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2055\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2064\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2066\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2077\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2084\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2089\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2090\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2097\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2098\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2548\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2645\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2669\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2672\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2784\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2877\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3254\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-1753\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2265513\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://github.com/containers/buildah/security/advisories/GHSA-pmf3-c36m-g5cf\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://github.com/containers/podman/security/advisories/GHSA-874v-pj72-92f3\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://pkg.go.dev/vuln/GO-2024-2658\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2049\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2055\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2064\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2066\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2077\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2084\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2089\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2090\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2097\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2098\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2548\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2645\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2669\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2672\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2784\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2877\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3254\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2024-1753\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2265513\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/containers/buildah/security/advisories/GHSA-pmf3-c36m-g5cf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/containers/podman/security/advisories/GHSA-874v-pj72-92f3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FCRZVUDOFM5CPREQKBEU2VK2QK62PSBP/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KOYMVMQ7RWMDTSKQTBO734BE3WQPI2AJ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZVBSVZGVABPYIHK5HZM472NPGWMI7WXH/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:2049\", \"name\": \"RHSA-2024:2049\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2055\", \"name\": \"RHSA-2024:2055\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2064\", \"name\": \"RHSA-2024:2064\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2066\", \"name\": \"RHSA-2024:2066\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2077\", \"name\": \"RHSA-2024:2077\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2084\", \"name\": \"RHSA-2024:2084\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2089\", \"name\": \"RHSA-2024:2089\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2090\", \"name\": \"RHSA-2024:2090\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2097\", \"name\": \"RHSA-2024:2097\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2098\", \"name\": \"RHSA-2024:2098\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2548\", \"name\": \"RHSA-2024:2548\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2645\", \"name\": \"RHSA-2024:2645\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2669\", \"name\": \"RHSA-2024:2669\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2672\", \"name\": \"RHSA-2024:2672\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2784\", \"name\": \"RHSA-2024:2784\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2877\", \"name\": \"RHSA-2024:2877\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3254\", \"name\": \"RHSA-2024:3254\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-1753\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2265513\", \"name\": \"RHBZ#2265513\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://github.com/containers/buildah/security/advisories/GHSA-pmf3-c36m-g5cf\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/containers/podman/security/advisories/GHSA-874v-pj72-92f3\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FCRZVUDOFM5CPREQKBEU2VK2QK62PSBP/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KOYMVMQ7RWMDTSKQTBO734BE3WQPI2AJ/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZVBSVZGVABPYIHK5HZM472NPGWMI7WXH/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-01T18:48:22.005Z\"}}, {\"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-1753\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-05-02T15:05:28.144862Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-05-02T15:05:39.296Z\"}, \"title\": \"CISA ADP Vulnrichment\"}], \"cna\": {\"title\": \"Buildah: full container escape at build time\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 8.6, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"versions\": [{\"status\": \"affected\", \"version\": \"4.15.0\"}], \"packageName\": \"buildah\", \"collectionURL\": \"https://github.com/openshift/builder/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8090020240413110917.d7b6f4b7\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"container-tools:4.0\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8090020240417184044.e7857ab1\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"container-tools:rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8100020240419145834.afee755d\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"container-tools:rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.6 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8060020240422155330.3b538bd8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"container-tools:rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:8.6::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.6 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8060020240419071711.2e213529\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"container-tools:4.0\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:8.8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.8 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8080020240422101606.0f77c1b7\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"container-tools:rhel8\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.31.5-1.el9_3\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"4:4.9.4-3.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.0::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.0 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.26.7-1.el9_0\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.0::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.0 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:4.2.0-3.el9_0\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.2::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.2 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"1:1.29.3-1.el9_2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:9.2::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9.2 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"2:4.4.1-16.el9_2\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.12::el8\", \"cpe:/a:redhat:openshift:4.12::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.12\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-3.2.rhaos4.12.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el9\", \"cpe:/a:redhat:openshift:4.13::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-6.3.rhaos4.13.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.13::el9\", \"cpe:/a:redhat:openshift:4.13::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.13\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-8.3.rhaos4.13.el9\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.14::el8\", \"cpe:/a:redhat:openshift:4.14::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.14\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-13.4.rhaos4.14.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:4.15::el9\", \"cpe:/a:redhat:openshift:4.15::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 4.15\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"3:4.4.1-23.2.rhaos4.15.el8\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"buildah\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:openshift:3.11\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Container Platform 3.11\", \"packageName\": \"podman\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-02-22T00:00:00.000Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2024-03-18T00:00:00.000Z\", \"value\": \"Made public.\"}], \"datePublic\": \"2024-03-18T00:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:2049\", \"name\": \"RHSA-2024:2049\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2055\", \"name\": \"RHSA-2024:2055\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2064\", \"name\": \"RHSA-2024:2064\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2066\", \"name\": \"RHSA-2024:2066\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2077\", \"name\": \"RHSA-2024:2077\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2084\", \"name\": \"RHSA-2024:2084\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2089\", \"name\": \"RHSA-2024:2089\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2090\", \"name\": \"RHSA-2024:2090\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2097\", \"name\": \"RHSA-2024:2097\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2098\", \"name\": \"RHSA-2024:2098\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2548\", \"name\": \"RHSA-2024:2548\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2645\", \"name\": \"RHSA-2024:2645\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2669\", \"name\": \"RHSA-2024:2669\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2672\", \"name\": \"RHSA-2024:2672\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2784\", \"name\": \"RHSA-2024:2784\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2877\", \"name\": \"RHSA-2024:2877\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3254\", \"name\": \"RHSA-2024:3254\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2024-1753\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2265513\", \"name\": \"RHBZ#2265513\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://github.com/containers/buildah/security/advisories/GHSA-pmf3-c36m-g5cf\"}, {\"url\": \"https://github.com/containers/podman/security/advisories/GHSA-874v-pj72-92f3\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2024-2658\"}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"When SELinux is enabled, the container is restricted to limited read-only access.\"}], \"x_generator\": {\"engine\": \"cvelib 1.8.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-59\", \"description\": \"Improper Link Resolution Before File Access (\u0027Link Following\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2026-03-04T04:16:07.393Z\"}, \"x_redhatCweChain\": \"CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)\"}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-1753\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-03-04T04:16:07.393Z\", \"dateReserved\": \"2024-02-22T14:42:20.623Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2024-03-18T14:23:44.213Z\", \"assignerShortName\": \"redhat\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
SUSE-SU-2024:1059-1
Vulnerability from csaf_suse - Published: 2024-03-28 13:51 - Updated: 2024-03-28 13:51Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- CVE-2024-1753: Fixed full container escape at build time in buildah (bsc#1221677).
Patchnames: SUSE-2024-1059,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1059,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1059,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1059,SUSE-SUSE-MicroOS-5.1-2024-1059,SUSE-SUSE-MicroOS-5.2-2024-1059,SUSE-Storage-7.1-2024-1059
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-4.4.4-150300.9.26.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-4.4.4-150300.9.26.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:podman-cni-config-4.4.4-150300.9.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-cni-config-4.4.4-150300.9.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:podman-cni-config-4.4.4-150300.9.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:podman-cni-config-4.4.4-150300.9.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:podman-cni-config-4.4.4-150300.9.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.4.4-150300.9.26.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.4.4-150300.9.26.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-cni-config-4.4.4-150300.9.26.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- CVE-2024-1753: Fixed full container escape at build time in buildah (bsc#1221677).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1059,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1059,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1059,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1059,SUSE-SUSE-MicroOS-5.1-2024-1059,SUSE-SUSE-MicroOS-5.2-2024-1059,SUSE-Storage-7.1-2024-1059",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1059-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1059-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241059-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1059-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018240.html"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2024-03-28T13:51:14Z",
"generator": {
"date": "2024-03-28T13:51:14Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1059-1",
"initial_release_date": "2024-03-28T13:51:14Z",
"revision_history": [
{
"date": "2024-03-28T13:51:14Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.4.4-150300.9.26.2.aarch64",
"product": {
"name": "podman-4.4.4-150300.9.26.2.aarch64",
"product_id": "podman-4.4.4-150300.9.26.2.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.4.4-150300.9.26.2.aarch64",
"product": {
"name": "podman-remote-4.4.4-150300.9.26.2.aarch64",
"product_id": "podman-remote-4.4.4-150300.9.26.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.4.4-150300.9.26.2.i586",
"product": {
"name": "podman-4.4.4-150300.9.26.2.i586",
"product_id": "podman-4.4.4-150300.9.26.2.i586"
}
},
{
"category": "product_version",
"name": "podman-remote-4.4.4-150300.9.26.2.i586",
"product": {
"name": "podman-remote-4.4.4-150300.9.26.2.i586",
"product_id": "podman-remote-4.4.4-150300.9.26.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-cni-config-4.4.4-150300.9.26.2.noarch",
"product": {
"name": "podman-cni-config-4.4.4-150300.9.26.2.noarch",
"product_id": "podman-cni-config-4.4.4-150300.9.26.2.noarch"
}
},
{
"category": "product_version",
"name": "podman-docker-4.4.4-150300.9.26.2.noarch",
"product": {
"name": "podman-docker-4.4.4-150300.9.26.2.noarch",
"product_id": "podman-docker-4.4.4-150300.9.26.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.4.4-150300.9.26.2.ppc64le",
"product": {
"name": "podman-4.4.4-150300.9.26.2.ppc64le",
"product_id": "podman-4.4.4-150300.9.26.2.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-4.4.4-150300.9.26.2.ppc64le",
"product": {
"name": "podman-remote-4.4.4-150300.9.26.2.ppc64le",
"product_id": "podman-remote-4.4.4-150300.9.26.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.4.4-150300.9.26.2.s390x",
"product": {
"name": "podman-4.4.4-150300.9.26.2.s390x",
"product_id": "podman-4.4.4-150300.9.26.2.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.4.4-150300.9.26.2.s390x",
"product": {
"name": "podman-remote-4.4.4-150300.9.26.2.s390x",
"product_id": "podman-remote-4.4.4-150300.9.26.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.4.4-150300.9.26.2.x86_64",
"product": {
"name": "podman-4.4.4-150300.9.26.2.x86_64",
"product_id": "podman-4.4.4-150300.9.26.2.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.4.4-150300.9.26.2.x86_64",
"product": {
"name": "podman-remote-4.4.4-150300.9.26.2.x86_64",
"product_id": "podman-remote-4.4.4-150300.9.26.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.2"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.aarch64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.x86_64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-cni-config-4.4.4-150300.9.26.2.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-cni-config-4.4.4-150300.9.26.2.noarch"
},
"product_reference": "podman-cni-config-4.4.4-150300.9.26.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.aarch64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.ppc64le"
},
"product_reference": "podman-4.4.4-150300.9.26.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.s390x"
},
"product_reference": "podman-4.4.4-150300.9.26.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.x86_64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-cni-config-4.4.4-150300.9.26.2.noarch as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-cni-config-4.4.4-150300.9.26.2.noarch"
},
"product_reference": "podman-cni-config-4.4.4-150300.9.26.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.4.4-150300.9.26.2.ppc64le"
},
"product_reference": "podman-4.4.4-150300.9.26.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.4.4-150300.9.26.2.x86_64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-cni-config-4.4.4-150300.9.26.2.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-cni-config-4.4.4-150300.9.26.2.noarch"
},
"product_reference": "podman-cni-config-4.4.4-150300.9.26.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.aarch64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.s390x"
},
"product_reference": "podman-4.4.4-150300.9.26.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.x86_64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-cni-config-4.4.4-150300.9.26.2.noarch as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:podman-cni-config-4.4.4-150300.9.26.2.noarch"
},
"product_reference": "podman-cni-config-4.4.4-150300.9.26.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.aarch64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.s390x"
},
"product_reference": "podman-4.4.4-150300.9.26.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.x86_64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-cni-config-4.4.4-150300.9.26.2.noarch as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:podman-cni-config-4.4.4-150300.9.26.2.noarch"
},
"product_reference": "podman-cni-config-4.4.4-150300.9.26.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-4.4.4-150300.9.26.2.aarch64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.4.4-150300.9.26.2.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-4.4.4-150300.9.26.2.x86_64"
},
"product_reference": "podman-4.4.4-150300.9.26.2.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-cni-config-4.4.4-150300.9.26.2.noarch as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:podman-cni-config-4.4.4-150300.9.26.2.noarch"
},
"product_reference": "podman-cni-config-4.4.4-150300.9.26.2.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.4.4-150300.9.26.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-cni-config-4.4.4-150300.9.26.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.4.4-150300.9.26.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-cni-config-4.4.4-150300.9.26.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Enterprise Storage 7.1:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Enterprise Storage 7.1:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.s390x",
"SUSE Linux Enterprise Micro 5.1:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Micro 5.1:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.s390x",
"SUSE Linux Enterprise Micro 5.2:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Micro 5.2:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:podman-cni-config-4.4.4-150300.9.26.2.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.4.4-150300.9.26.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.4.4-150300.9.26.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-cni-config-4.4.4-150300.9.26.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-28T13:51:14Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
}
]
}
SUSE-SU-2024:1142-1
Vulnerability from csaf_suse - Published: 2024-04-08 09:32 - Updated: 2024-04-08 09:32Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
- CVE-2024-1753: Fixed an issue to prevent a full container escape at build time. (bsc#1221677)
Patchnames: SUSE-2024-1142,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1142,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1142,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1142
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:buildah-1.25.1-150100.3.23.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:buildah-1.25.1-150100.3.23.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\n- CVE-2024-1753: Fixed an issue to prevent a full container escape at build time. (bsc#1221677)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1142,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1142,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1142,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1142",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1142-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1142-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241142-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1142-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-April/034880.html"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2024-04-08T09:32:29Z",
"generator": {
"date": "2024-04-08T09:32:29Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1142-1",
"initial_release_date": "2024-04-08T09:32:29Z",
"revision_history": [
{
"date": "2024-04-08T09:32:29Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.25.1-150100.3.23.1.aarch64",
"product": {
"name": "buildah-1.25.1-150100.3.23.1.aarch64",
"product_id": "buildah-1.25.1-150100.3.23.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.25.1-150100.3.23.1.i586",
"product": {
"name": "buildah-1.25.1-150100.3.23.1.i586",
"product_id": "buildah-1.25.1-150100.3.23.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.25.1-150100.3.23.1.ppc64le",
"product": {
"name": "buildah-1.25.1-150100.3.23.1.ppc64le",
"product_id": "buildah-1.25.1-150100.3.23.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.25.1-150100.3.23.1.s390x",
"product": {
"name": "buildah-1.25.1-150100.3.23.1.s390x",
"product_id": "buildah-1.25.1-150100.3.23.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.25.1-150100.3.23.1.x86_64",
"product": {
"name": "buildah-1.25.1-150100.3.23.1.x86_64",
"product_id": "buildah-1.25.1-150100.3.23.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.25.1-150100.3.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.aarch64"
},
"product_reference": "buildah-1.25.1-150100.3.23.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.25.1-150100.3.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.x86_64"
},
"product_reference": "buildah-1.25.1-150100.3.23.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.25.1-150100.3.23.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.aarch64"
},
"product_reference": "buildah-1.25.1-150100.3.23.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.25.1-150100.3.23.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.ppc64le"
},
"product_reference": "buildah-1.25.1-150100.3.23.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.25.1-150100.3.23.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.s390x"
},
"product_reference": "buildah-1.25.1-150100.3.23.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.25.1-150100.3.23.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.x86_64"
},
"product_reference": "buildah-1.25.1-150100.3.23.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.25.1-150100.3.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:buildah-1.25.1-150100.3.23.1.ppc64le"
},
"product_reference": "buildah-1.25.1-150100.3.23.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.25.1-150100.3.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:buildah-1.25.1-150100.3.23.1.x86_64"
},
"product_reference": "buildah-1.25.1-150100.3.23.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:buildah-1.25.1-150100.3.23.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:buildah-1.25.1-150100.3.23.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:buildah-1.25.1-150100.3.23.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:buildah-1.25.1-150100.3.23.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:buildah-1.25.1-150100.3.23.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:buildah-1.25.1-150100.3.23.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:buildah-1.25.1-150100.3.23.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-04-08T09:32:29Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
}
]
}
SUSE-SU-2024:1143-1
Vulnerability from csaf_suse - Published: 2024-04-08 09:32 - Updated: 2024-04-08 09:32Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
- CVE-2024-1753: Fixed an issue to prevent a full container escape at build time. (bsc#1221677)
- Update to version 1.34.1 for compatibility with Docker 25.0
(which is not in SLES yet, but will eventually be) (bsc#1219563).
See the corresponding release notes:
* https://github.com/containers/buildah/releases/tag/v1.34.1
* https://github.com/containers/buildah/releases/tag/v1.34.0
* https://github.com/containers/buildah/releases/tag/v1.33.0
* https://github.com/containers/buildah/releases/tag/v1.32.0
* https://github.com/containers/buildah/releases/tag/v1.31.0
* https://github.com/containers/buildah/releases/tag/v1.30.0
- Require cni-plugins (bsc#1220568)
Patchnames: SUSE-2024-1143,SUSE-SLE-Module-Containers-15-SP5-2024-1143,openSUSE-SLE-15.5-2024-1143
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\n- CVE-2024-1753: Fixed an issue to prevent a full container escape at build time. (bsc#1221677)\n- Update to version 1.34.1 for compatibility with Docker 25.0\n (which is not in SLES yet, but will eventually be) (bsc#1219563).\n See the corresponding release notes:\n * https://github.com/containers/buildah/releases/tag/v1.34.1\n * https://github.com/containers/buildah/releases/tag/v1.34.0\n * https://github.com/containers/buildah/releases/tag/v1.33.0\n * https://github.com/containers/buildah/releases/tag/v1.32.0\n * https://github.com/containers/buildah/releases/tag/v1.31.0\n * https://github.com/containers/buildah/releases/tag/v1.30.0\n\n- Require cni-plugins (bsc#1220568)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1143,SUSE-SLE-Module-Containers-15-SP5-2024-1143,openSUSE-SLE-15.5-2024-1143",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1143-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1143-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241143-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1143-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-April/034879.html"
},
{
"category": "self",
"summary": "SUSE Bug 1219563",
"url": "https://bugzilla.suse.com/1219563"
},
{
"category": "self",
"summary": "SUSE Bug 1220568",
"url": "https://bugzilla.suse.com/1220568"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2024-04-08T09:32:35Z",
"generator": {
"date": "2024-04-08T09:32:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1143-1",
"initial_release_date": "2024-04-08T09:32:35Z",
"revision_history": [
{
"date": "2024-04-08T09:32:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150500.3.7.1.aarch64",
"product": {
"name": "buildah-1.34.1-150500.3.7.1.aarch64",
"product_id": "buildah-1.34.1-150500.3.7.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150500.3.7.1.i586",
"product": {
"name": "buildah-1.34.1-150500.3.7.1.i586",
"product_id": "buildah-1.34.1-150500.3.7.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150500.3.7.1.ppc64le",
"product": {
"name": "buildah-1.34.1-150500.3.7.1.ppc64le",
"product_id": "buildah-1.34.1-150500.3.7.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150500.3.7.1.s390x",
"product": {
"name": "buildah-1.34.1-150500.3.7.1.s390x",
"product_id": "buildah-1.34.1-150500.3.7.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150500.3.7.1.x86_64",
"product": {
"name": "buildah-1.34.1-150500.3.7.1.x86_64",
"product_id": "buildah-1.34.1-150500.3.7.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150500.3.7.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.aarch64"
},
"product_reference": "buildah-1.34.1-150500.3.7.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150500.3.7.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.ppc64le"
},
"product_reference": "buildah-1.34.1-150500.3.7.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150500.3.7.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.s390x"
},
"product_reference": "buildah-1.34.1-150500.3.7.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150500.3.7.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.x86_64"
},
"product_reference": "buildah-1.34.1-150500.3.7.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150500.3.7.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.aarch64"
},
"product_reference": "buildah-1.34.1-150500.3.7.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150500.3.7.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.ppc64le"
},
"product_reference": "buildah-1.34.1-150500.3.7.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150500.3.7.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.s390x"
},
"product_reference": "buildah-1.34.1-150500.3.7.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150500.3.7.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.x86_64"
},
"product_reference": "buildah-1.34.1-150500.3.7.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.x86_64",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.aarch64",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.s390x",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.x86_64",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.aarch64",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.s390x",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.34.1-150500.3.7.1.x86_64",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.aarch64",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.s390x",
"openSUSE Leap 15.5:buildah-1.34.1-150500.3.7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-04-08T09:32:35Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
}
]
}
SUSE-SU-2024:1144-1
Vulnerability from csaf_suse - Published: 2024-04-08 09:34 - Updated: 2024-04-08 09:34Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
- CVE-2024-1753: Fixed an issue to prevent a full container escape at build time. (bsc#1221677)
- Update to version 1.34.1 for compatibility with Docker 25.0
(which is not in SLES yet, but will eventually be) (bsc#1219563).
See the corresponding release notes:
* https://github.com/containers/buildah/releases/tag/v1.34.1
* https://github.com/containers/buildah/releases/tag/v1.34.0
* https://github.com/containers/buildah/releases/tag/v1.33.0
* https://github.com/containers/buildah/releases/tag/v1.32.0
* https://github.com/containers/buildah/releases/tag/v1.31.0
* https://github.com/containers/buildah/releases/tag/v1.30.0
- Require cni-plugins (bsc#1220568)
Patchnames: SUSE-2024-1144,SUSE-SLE-Micro-5.3-2024-1144,SUSE-SLE-Micro-5.4-2024-1144,SUSE-SLE-Module-Public-Cloud-15-SP2-2024-1144,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1144,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1144,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1144,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1144,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1144,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1144,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1144,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1144,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1144,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1144,SUSE-SUSE-MicroOS-5.1-2024-1144,SUSE-SUSE-MicroOS-5.2-2024-1144,SUSE-Storage-7.1-2024-1144,openSUSE-Leap-Micro-5.3-2024-1144,openSUSE-Leap-Micro-5.4-2024-1144
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
108 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.34.1-150400.3.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.34.1-150400.3.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-0.7.1-150100.3.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-plugins-0.8.6-150100.3.22.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-0.7.1-150100.3.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-plugins-0.8.6-150100.3.22.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.34.1-150400.3.27.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.34.1-150400.3.27.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-0.7.1-150100.3.18.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-plugins-0.8.6-150100.3.22.3.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.3:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.3:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\n- CVE-2024-1753: Fixed an issue to prevent a full container escape at build time. (bsc#1221677)\n- Update to version 1.34.1 for compatibility with Docker 25.0\n (which is not in SLES yet, but will eventually be) (bsc#1219563).\n See the corresponding release notes:\n * https://github.com/containers/buildah/releases/tag/v1.34.1\n * https://github.com/containers/buildah/releases/tag/v1.34.0\n * https://github.com/containers/buildah/releases/tag/v1.33.0\n * https://github.com/containers/buildah/releases/tag/v1.32.0\n * https://github.com/containers/buildah/releases/tag/v1.31.0\n * https://github.com/containers/buildah/releases/tag/v1.30.0\n\n- Require cni-plugins (bsc#1220568)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1144,SUSE-SLE-Micro-5.3-2024-1144,SUSE-SLE-Micro-5.4-2024-1144,SUSE-SLE-Module-Public-Cloud-15-SP2-2024-1144,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1144,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1144,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1144,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1144,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1144,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1144,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1144,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1144,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1144,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1144,SUSE-SUSE-MicroOS-5.1-2024-1144,SUSE-SUSE-MicroOS-5.2-2024-1144,SUSE-Storage-7.1-2024-1144,openSUSE-Leap-Micro-5.3-2024-1144,openSUSE-Leap-Micro-5.4-2024-1144",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1144-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1144-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241144-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1144-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-April/034878.html"
},
{
"category": "self",
"summary": "SUSE Bug 1219563",
"url": "https://bugzilla.suse.com/1219563"
},
{
"category": "self",
"summary": "SUSE Bug 1220568",
"url": "https://bugzilla.suse.com/1220568"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2024-04-08T09:34:17Z",
"generator": {
"date": "2024-04-08T09:34:17Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1144-1",
"initial_release_date": "2024-04-08T09:34:17Z",
"revision_history": [
{
"date": "2024-04-08T09:34:17Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150400.3.27.1.aarch64",
"product": {
"name": "buildah-1.34.1-150400.3.27.1.aarch64",
"product_id": "buildah-1.34.1-150400.3.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "cni-0.7.1-150100.3.18.1.aarch64",
"product": {
"name": "cni-0.7.1-150100.3.18.1.aarch64",
"product_id": "cni-0.7.1-150100.3.18.1.aarch64"
}
},
{
"category": "product_version",
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"product": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"product_id": "cni-plugins-0.8.6-150100.3.22.3.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150400.3.27.1.i586",
"product": {
"name": "buildah-1.34.1-150400.3.27.1.i586",
"product_id": "buildah-1.34.1-150400.3.27.1.i586"
}
},
{
"category": "product_version",
"name": "cni-0.7.1-150100.3.18.1.i586",
"product": {
"name": "cni-0.7.1-150100.3.18.1.i586",
"product_id": "cni-0.7.1-150100.3.18.1.i586"
}
},
{
"category": "product_version",
"name": "cni-plugins-0.8.6-150100.3.22.3.i586",
"product": {
"name": "cni-plugins-0.8.6-150100.3.22.3.i586",
"product_id": "cni-plugins-0.8.6-150100.3.22.3.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150400.3.27.1.ppc64le",
"product": {
"name": "buildah-1.34.1-150400.3.27.1.ppc64le",
"product_id": "buildah-1.34.1-150400.3.27.1.ppc64le"
}
},
{
"category": "product_version",
"name": "cni-0.7.1-150100.3.18.1.ppc64le",
"product": {
"name": "cni-0.7.1-150100.3.18.1.ppc64le",
"product_id": "cni-0.7.1-150100.3.18.1.ppc64le"
}
},
{
"category": "product_version",
"name": "cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"product": {
"name": "cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"product_id": "cni-plugins-0.8.6-150100.3.22.3.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150400.3.27.1.s390x",
"product": {
"name": "buildah-1.34.1-150400.3.27.1.s390x",
"product_id": "buildah-1.34.1-150400.3.27.1.s390x"
}
},
{
"category": "product_version",
"name": "cni-0.7.1-150100.3.18.1.s390x",
"product": {
"name": "cni-0.7.1-150100.3.18.1.s390x",
"product_id": "cni-0.7.1-150100.3.18.1.s390x"
}
},
{
"category": "product_version",
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"product": {
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"product_id": "cni-plugins-0.8.6-150100.3.22.3.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150400.3.27.1.x86_64",
"product": {
"name": "buildah-1.34.1-150400.3.27.1.x86_64",
"product_id": "buildah-1.34.1-150400.3.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "cni-0.7.1-150100.3.18.1.x86_64",
"product": {
"name": "cni-0.7.1-150100.3.18.1.x86_64",
"product_id": "cni-0.7.1-150100.3.18.1.x86_64"
}
},
{
"category": "product_version",
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"product": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"product_id": "cni-plugins-0.8.6-150100.3.22.3.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.2"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap Micro 5.3",
"product": {
"name": "openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap Micro 5.4",
"product": {
"name": "openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap-micro:5.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.s390x"
},
"product_reference": "cni-0.7.1-150100.3.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.s390x"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.s390x"
},
"product_reference": "cni-0.7.1-150100.3.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.s390x"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.ppc64le"
},
"product_reference": "cni-0.7.1-150100.3.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.s390x"
},
"product_reference": "cni-0.7.1-150100.3.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.ppc64le"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.s390x"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP2",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.34.1-150400.3.27.1.aarch64"
},
"product_reference": "buildah-1.34.1-150400.3.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.34.1-150400.3.27.1.x86_64"
},
"product_reference": "buildah-1.34.1-150400.3.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.aarch64"
},
"product_reference": "buildah-1.34.1-150400.3.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.x86_64"
},
"product_reference": "buildah-1.34.1-150400.3.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.ppc64le"
},
"product_reference": "cni-0.7.1-150100.3.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.s390x"
},
"product_reference": "cni-0.7.1-150100.3.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.ppc64le"
},
"product_reference": "cni-0.7.1-150100.3.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.s390x"
},
"product_reference": "cni-0.7.1-150100.3.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150400.3.27.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.aarch64"
},
"product_reference": "buildah-1.34.1-150400.3.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150400.3.27.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.ppc64le"
},
"product_reference": "buildah-1.34.1-150400.3.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150400.3.27.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.s390x"
},
"product_reference": "buildah-1.34.1-150400.3.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.x86_64"
},
"product_reference": "buildah-1.34.1-150400.3.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.ppc64le"
},
"product_reference": "cni-0.7.1-150100.3.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.s390x"
},
"product_reference": "cni-0.7.1-150100.3.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-0.7.1-150100.3.18.1.ppc64le"
},
"product_reference": "cni-0.7.1-150100.3.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-plugins-0.8.6-150100.3.22.3.ppc64le"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-0.7.1-150100.3.18.1.ppc64le"
},
"product_reference": "cni-0.7.1-150100.3.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-plugins-0.8.6-150100.3.22.3.ppc64le"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150400.3.27.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.34.1-150400.3.27.1.ppc64le"
},
"product_reference": "buildah-1.34.1-150400.3.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150400.3.27.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.34.1-150400.3.27.1.x86_64"
},
"product_reference": "buildah-1.34.1-150400.3.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-0.7.1-150100.3.18.1.ppc64le"
},
"product_reference": "cni-0.7.1-150100.3.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-plugins-0.8.6-150100.3.22.3.ppc64le"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.s390x"
},
"product_reference": "cni-0.7.1-150100.3.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.s390x"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.s390x"
},
"product_reference": "cni-0.7.1-150100.3.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.s390x"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "openSUSE Leap Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "openSUSE Leap Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of openSUSE Leap Micro 5.3",
"product_id": "openSUSE Leap Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.aarch64 as component of openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.aarch64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.aarch64",
"relates_to_product_reference": "openSUSE Leap Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.s390x as component of openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.s390x"
},
"product_reference": "cni-0.7.1-150100.3.18.1.s390x",
"relates_to_product_reference": "openSUSE Leap Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-0.7.1-150100.3.18.1.x86_64 as component of openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.x86_64"
},
"product_reference": "cni-0.7.1-150100.3.18.1.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.aarch64 as component of openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.aarch64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.aarch64",
"relates_to_product_reference": "openSUSE Leap Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.s390x as component of openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.s390x"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.s390x",
"relates_to_product_reference": "openSUSE Leap Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cni-plugins-0.8.6-150100.3.22.3.x86_64 as component of openSUSE Leap Micro 5.4",
"product_id": "openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.x86_64"
},
"product_reference": "cni-plugins-0.8.6-150100.3.22.3.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Enterprise Storage 7.1:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Enterprise Storage 7.1:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Enterprise Storage 7.1:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.34.1-150400.3.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.34.1-150400.3.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"openSUSE Leap Micro 5.3:cni-0.7.1-150100.3.18.1.aarch64",
"openSUSE Leap Micro 5.3:cni-0.7.1-150100.3.18.1.x86_64",
"openSUSE Leap Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"openSUSE Leap Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.aarch64",
"openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.s390x",
"openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.x86_64",
"openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.s390x",
"openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Enterprise Storage 7.1:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Enterprise Storage 7.1:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Enterprise Storage 7.1:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.34.1-150400.3.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.34.1-150400.3.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"openSUSE Leap Micro 5.3:cni-0.7.1-150100.3.18.1.aarch64",
"openSUSE Leap Micro 5.3:cni-0.7.1-150100.3.18.1.x86_64",
"openSUSE Leap Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"openSUSE Leap Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.aarch64",
"openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.s390x",
"openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.x86_64",
"openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.s390x",
"openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Enterprise Storage 7.1:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Enterprise Storage 7.1:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Enterprise Storage 7.1:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.34.1-150400.3.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.1:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.1:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.2:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.2:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.3:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Micro 5.4:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Module for Public Cloud 15 SP2:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.34.1-150400.3.27.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.34.1-150400.3.27.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-0.7.1-150100.3.18.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-0.7.1-150100.3.18.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-plugins-0.8.6-150100.3.22.3.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"openSUSE Leap Micro 5.3:cni-0.7.1-150100.3.18.1.aarch64",
"openSUSE Leap Micro 5.3:cni-0.7.1-150100.3.18.1.x86_64",
"openSUSE Leap Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"openSUSE Leap Micro 5.3:cni-plugins-0.8.6-150100.3.22.3.x86_64",
"openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.aarch64",
"openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.s390x",
"openSUSE Leap Micro 5.4:cni-0.7.1-150100.3.18.1.x86_64",
"openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.aarch64",
"openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.s390x",
"openSUSE Leap Micro 5.4:cni-plugins-0.8.6-150100.3.22.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-04-08T09:34:17Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
}
]
}
SUSE-SU-2024:1145-1
Vulnerability from csaf_suse - Published: 2024-04-08 09:34 - Updated: 2024-04-08 09:34Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
- CVE-2024-1753: Fixed an issue to prevent a full container escape at build time. (bsc#1221677)
- Update to version 1.34.1 for compatibility with Docker 25.0
(which is not in SLES yet, but will eventually be) (bsc#1219563).
See the corresponding release notes:
* https://github.com/containers/buildah/releases/tag/v1.34.1
* https://github.com/containers/buildah/releases/tag/v1.34.0
* https://github.com/containers/buildah/releases/tag/v1.33.0
* https://github.com/containers/buildah/releases/tag/v1.32.0
* https://github.com/containers/buildah/releases/tag/v1.31.0
* https://github.com/containers/buildah/releases/tag/v1.30.0
- Require cni-plugins (bsc#1220568)
Patchnames: SUSE-2024-1145,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1145,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1145,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1145,SUSE-Storage-7.1-2024-1145
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.34.1-150300.8.22.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.34.1-150300.8.22.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.34.1-150300.8.22.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.34.1-150300.8.22.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
10 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\n- CVE-2024-1753: Fixed an issue to prevent a full container escape at build time. (bsc#1221677)\n- Update to version 1.34.1 for compatibility with Docker 25.0\n (which is not in SLES yet, but will eventually be) (bsc#1219563).\n See the corresponding release notes:\n * https://github.com/containers/buildah/releases/tag/v1.34.1\n * https://github.com/containers/buildah/releases/tag/v1.34.0\n * https://github.com/containers/buildah/releases/tag/v1.33.0\n * https://github.com/containers/buildah/releases/tag/v1.32.0\n * https://github.com/containers/buildah/releases/tag/v1.31.0\n * https://github.com/containers/buildah/releases/tag/v1.30.0\n\n- Require cni-plugins (bsc#1220568)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1145,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1145,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1145,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1145,SUSE-Storage-7.1-2024-1145",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1145-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1145-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241145-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1145-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-April/034877.html"
},
{
"category": "self",
"summary": "SUSE Bug 1219563",
"url": "https://bugzilla.suse.com/1219563"
},
{
"category": "self",
"summary": "SUSE Bug 1220568",
"url": "https://bugzilla.suse.com/1220568"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2024-04-08T09:34:46Z",
"generator": {
"date": "2024-04-08T09:34:46Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1145-1",
"initial_release_date": "2024-04-08T09:34:46Z",
"revision_history": [
{
"date": "2024-04-08T09:34:46Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150300.8.22.1.aarch64",
"product": {
"name": "buildah-1.34.1-150300.8.22.1.aarch64",
"product_id": "buildah-1.34.1-150300.8.22.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150300.8.22.1.i586",
"product": {
"name": "buildah-1.34.1-150300.8.22.1.i586",
"product_id": "buildah-1.34.1-150300.8.22.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150300.8.22.1.ppc64le",
"product": {
"name": "buildah-1.34.1-150300.8.22.1.ppc64le",
"product_id": "buildah-1.34.1-150300.8.22.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150300.8.22.1.s390x",
"product": {
"name": "buildah-1.34.1-150300.8.22.1.s390x",
"product_id": "buildah-1.34.1-150300.8.22.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.34.1-150300.8.22.1.x86_64",
"product": {
"name": "buildah-1.34.1-150300.8.22.1.x86_64",
"product_id": "buildah-1.34.1-150300.8.22.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150300.8.22.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.aarch64"
},
"product_reference": "buildah-1.34.1-150300.8.22.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150300.8.22.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.x86_64"
},
"product_reference": "buildah-1.34.1-150300.8.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150300.8.22.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.aarch64"
},
"product_reference": "buildah-1.34.1-150300.8.22.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150300.8.22.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.ppc64le"
},
"product_reference": "buildah-1.34.1-150300.8.22.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150300.8.22.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.s390x"
},
"product_reference": "buildah-1.34.1-150300.8.22.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150300.8.22.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.x86_64"
},
"product_reference": "buildah-1.34.1-150300.8.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150300.8.22.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.34.1-150300.8.22.1.ppc64le"
},
"product_reference": "buildah-1.34.1-150300.8.22.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150300.8.22.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.34.1-150300.8.22.1.x86_64"
},
"product_reference": "buildah-1.34.1-150300.8.22.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150300.8.22.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:buildah-1.34.1-150300.8.22.1.aarch64"
},
"product_reference": "buildah-1.34.1-150300.8.22.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.34.1-150300.8.22.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:buildah-1.34.1-150300.8.22.1.x86_64"
},
"product_reference": "buildah-1.34.1-150300.8.22.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.34.1-150300.8.22.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.34.1-150300.8.22.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.34.1-150300.8.22.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.34.1-150300.8.22.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.34.1-150300.8.22.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.34.1-150300.8.22.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.34.1-150300.8.22.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.34.1-150300.8.22.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.34.1-150300.8.22.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.34.1-150300.8.22.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.34.1-150300.8.22.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.34.1-150300.8.22.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.34.1-150300.8.22.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-04-08T09:34:46Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
}
]
}
SUSE-SU-2024:1146-1
Vulnerability from csaf_suse - Published: 2024-04-08 09:34 - Updated: 2024-04-08 09:34Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch: This update for podman fixes the following issues:
- CVE-2024-1753: Fixed an issue to prevent a full container escape at build time. (bsc#1221677)
Patchnames: SUSE-2024-1146,SUSE-SLE-Micro-5.5-2024-1146,SUSE-SLE-Module-Containers-15-SP5-2024-1146,openSUSE-SLE-15.5-2024-1146
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-docker-4.8.3-150500.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.8.3-150500.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-docker-4.8.3-150500.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for podman fixes the following issues:\n\n- CVE-2024-1753: Fixed an issue to prevent a full container escape at build time. (bsc#1221677)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-1146,SUSE-SLE-Micro-5.5-2024-1146,SUSE-SLE-Module-Containers-15-SP5-2024-1146,openSUSE-SLE-15.5-2024-1146",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1146-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:1146-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241146-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:1146-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-April/034876.html"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2024-04-08T09:34:55Z",
"generator": {
"date": "2024-04-08T09:34:55Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:1146-1",
"initial_release_date": "2024-04-08T09:34:55Z",
"revision_history": [
{
"date": "2024-04-08T09:34:55Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.8.3-150500.3.9.1.aarch64",
"product": {
"name": "podman-4.8.3-150500.3.9.1.aarch64",
"product_id": "podman-4.8.3-150500.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.8.3-150500.3.9.1.aarch64",
"product": {
"name": "podman-remote-4.8.3-150500.3.9.1.aarch64",
"product_id": "podman-remote-4.8.3-150500.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-4.8.3-150500.3.9.1.aarch64",
"product": {
"name": "podmansh-4.8.3-150500.3.9.1.aarch64",
"product_id": "podmansh-4.8.3-150500.3.9.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.8.3-150500.3.9.1.i586",
"product": {
"name": "podman-4.8.3-150500.3.9.1.i586",
"product_id": "podman-4.8.3-150500.3.9.1.i586"
}
},
{
"category": "product_version",
"name": "podman-remote-4.8.3-150500.3.9.1.i586",
"product": {
"name": "podman-remote-4.8.3-150500.3.9.1.i586",
"product_id": "podman-remote-4.8.3-150500.3.9.1.i586"
}
},
{
"category": "product_version",
"name": "podmansh-4.8.3-150500.3.9.1.i586",
"product": {
"name": "podmansh-4.8.3-150500.3.9.1.i586",
"product_id": "podmansh-4.8.3-150500.3.9.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4.8.3-150500.3.9.1.noarch",
"product": {
"name": "podman-docker-4.8.3-150500.3.9.1.noarch",
"product_id": "podman-docker-4.8.3-150500.3.9.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.8.3-150500.3.9.1.ppc64le",
"product": {
"name": "podman-4.8.3-150500.3.9.1.ppc64le",
"product_id": "podman-4.8.3-150500.3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-4.8.3-150500.3.9.1.ppc64le",
"product": {
"name": "podman-remote-4.8.3-150500.3.9.1.ppc64le",
"product_id": "podman-remote-4.8.3-150500.3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-4.8.3-150500.3.9.1.ppc64le",
"product": {
"name": "podmansh-4.8.3-150500.3.9.1.ppc64le",
"product_id": "podmansh-4.8.3-150500.3.9.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.8.3-150500.3.9.1.s390x",
"product": {
"name": "podman-4.8.3-150500.3.9.1.s390x",
"product_id": "podman-4.8.3-150500.3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.8.3-150500.3.9.1.s390x",
"product": {
"name": "podman-remote-4.8.3-150500.3.9.1.s390x",
"product_id": "podman-remote-4.8.3-150500.3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-4.8.3-150500.3.9.1.s390x",
"product": {
"name": "podmansh-4.8.3-150500.3.9.1.s390x",
"product_id": "podmansh-4.8.3-150500.3.9.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.8.3-150500.3.9.1.x86_64",
"product": {
"name": "podman-4.8.3-150500.3.9.1.x86_64",
"product_id": "podman-4.8.3-150500.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.8.3-150500.3.9.1.x86_64",
"product": {
"name": "podman-remote-4.8.3-150500.3.9.1.x86_64",
"product_id": "podman-remote-4.8.3-150500.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-4.8.3-150500.3.9.1.x86_64",
"product": {
"name": "podmansh-4.8.3-150500.3.9.1.x86_64",
"product_id": "podmansh-4.8.3-150500.3.9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.aarch64"
},
"product_reference": "podman-4.8.3-150500.3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.s390x"
},
"product_reference": "podman-4.8.3-150500.3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.x86_64"
},
"product_reference": "podman-4.8.3-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.8.3-150500.3.9.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-docker-4.8.3-150500.3.9.1.noarch"
},
"product_reference": "podman-docker-4.8.3-150500.3.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.aarch64"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.s390x"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.x86_64"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.aarch64"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.s390x"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.x86_64"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.aarch64"
},
"product_reference": "podman-4.8.3-150500.3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.ppc64le"
},
"product_reference": "podman-4.8.3-150500.3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.s390x"
},
"product_reference": "podman-4.8.3-150500.3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.x86_64"
},
"product_reference": "podman-4.8.3-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.8.3-150500.3.9.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.8.3-150500.3.9.1.noarch"
},
"product_reference": "podman-docker-4.8.3-150500.3.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.aarch64"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.ppc64le"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.s390x"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.x86_64"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.aarch64"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.ppc64le"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.s390x"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.x86_64"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.aarch64"
},
"product_reference": "podman-4.8.3-150500.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.ppc64le"
},
"product_reference": "podman-4.8.3-150500.3.9.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.s390x"
},
"product_reference": "podman-4.8.3-150500.3.9.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.8.3-150500.3.9.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.x86_64"
},
"product_reference": "podman-4.8.3-150500.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.8.3-150500.3.9.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-docker-4.8.3-150500.3.9.1.noarch"
},
"product_reference": "podman-docker-4.8.3-150500.3.9.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.aarch64"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.ppc64le"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.s390x"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.8.3-150500.3.9.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.x86_64"
},
"product_reference": "podman-remote-4.8.3-150500.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.aarch64"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.ppc64le"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.s390x"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podmansh-4.8.3-150500.3.9.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.x86_64"
},
"product_reference": "podmansh-4.8.3-150500.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.8.3-150500.3.9.1.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.8.3-150500.3.9.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.ppc64le",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.s390x",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:podman-docker-4.8.3-150500.3.9.1.noarch",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.ppc64le",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.s390x",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.ppc64le",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.s390x",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.8.3-150500.3.9.1.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.8.3-150500.3.9.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.ppc64le",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.s390x",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:podman-docker-4.8.3-150500.3.9.1.noarch",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.ppc64le",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.s390x",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.ppc64le",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.s390x",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podman-docker-4.8.3-150500.3.9.1.noarch",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podman-remote-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Micro 5.5:podmansh-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-docker-4.8.3-150500.3.9.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podman-remote-4.8.3-150500.3.9.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:podmansh-4.8.3-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.ppc64le",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.s390x",
"openSUSE Leap 15.5:podman-4.8.3-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:podman-docker-4.8.3-150500.3.9.1.noarch",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.ppc64le",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.s390x",
"openSUSE Leap 15.5:podman-remote-4.8.3-150500.3.9.1.x86_64",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.aarch64",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.ppc64le",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.s390x",
"openSUSE Leap 15.5:podmansh-4.8.3-150500.3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-04-08T09:34:55Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
}
]
}
SUSE-SU-2024:3120-1
Vulnerability from csaf_suse - Published: 2024-09-03 15:13 - Updated: 2024-09-03 15:13Summary
Security update for buildah, docker
Severity
Critical
Notes
Title of the patch: Security update for buildah, docker
Description of the patch: This update for buildah, docker fixes the following issues:
Changes in docker:
- CVE-2024-23651: Fixed arbitrary files write due to race condition on mounts (bsc#1219267)
- CVE-2024-23652: Fixed insufficient validation of parent directory on mount (bsc#1219268)
- CVE-2024-23653: Fixed insufficient validation on entitlement on container creation via buildkit (bsc#1219438)
- CVE-2024-41110: A Authz zero length regression that could lead to authentication bypass was fixed (bsc#1228324)
Other fixes:
- Update to Docker 25.0.6-ce. See upstream changelog online at
<https://docs.docker.com/engine/release-notes/25.0/#2506>
- Update to Docker 25.0.5-ce (bsc#1223409)
- Fix BuildKit's symlink resolution logic to correctly handle non-lexical
symlinks. (bsc#1221916)
- Write volume options atomically so sudden system crashes won't result in
future Docker starts failing due to empty files. (bsc#1214855)
Changes in buildah:
- Update to version 1.35.4:
* [release-1.35] Bump to Buildah v1.35.4
* [release-1.35] CVE-2024-3727 updates (bsc#1224117)
* integration test: handle new labels in 'bud and test --unsetlabel'
* [release-1.35] Bump go-jose CVE-2024-28180
* [release-1.35] Bump ocicrypt and go-jose CVE-2024-28180
- Update to version 1.35.3:
* [release-1.35] Bump to Buildah v1.35.3
* [release-1.35] correctly configure /etc/hosts and resolv.conf
* [release-1.35] buildah: refactor resolv/hosts setup.
* [release-1.35] rename the hostFile var to reflect
* [release-1.35] Bump c/common to v0.58.1
* [release-1.35] Bump Buildah to v1.35.2
* [release-1.35] CVE-2024-24786 protobuf to 1.33
* [release-1.35] Bump to v1.35.2-dev
- Update to version 1.35.1:
* [release-1.35] Bump to v1.35.1
* [release-1.35] CVE-2024-1753 container escape fix (bsc#1221677)
- Buildah dropped cni support, require netavark instead (bsc#1221243)
- Remove obsolete requires libcontainers-image & libcontainers-storage
- Require passt for rootless networking (poo#156955)
Buildah moved to passt/pasta for rootless networking from slirp4netns
(https://github.com/containers/common/pull/1846)
- Update to version 1.35.0:
* Bump v1.35.0
* Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0
* conformance tests: don't break on trailing zeroes in layer blobs
* Add a conformance test for copying to a mounted prior stage
* fix(deps): update module github.com/stretchr/testify to v1.9.0
* cgroups: reuse version check from c/common
* Update vendor of containers/(common,image)
* fix(deps): update github.com/containers/storage digest to eadc620
* fix(deps): update github.com/containers/luksy digest to ceb12d4
* fix(deps): update github.com/containers/image/v5 digest to cdc6802
* manifest add: complain if we get artifact flags without --artifact
* Use retry logic from containers/common
* Vendor in containers/(storage,image,common)
* Update module golang.org/x/crypto to v0.20.0
* Add comment re: Total Success task name
* tests: skip_if_no_unshare(): check for --setuid
* Properly handle build --pull=false
* [skip-ci] Update tim-actions/get-pr-commits action to v1.3.1
* Update module go.etcd.io/bbolt to v1.3.9
* Revert 'Reduce official image size'
* Update module github.com/opencontainers/image-spec to v1.1.0
* Reduce official image size
* Build with CNI support on FreeBSD
* build --all-platforms: skip some base 'image' platforms
* Bump main to v1.35.0-dev
* Vendor in latest containers/(storage,image,common)
* Split up error messages for missing --sbom related flags
* `buildah manifest`: add artifact-related options
* cmd/buildah/manifest.go: lock lists before adding/annotating/pushing
* cmd/buildah/manifest.go: don't make struct declarations aliases
* Use golang.org/x/exp/slices.Contains
* Disable loong64 again
* Fix a couple of typos in one-line comments
* egrep is obsolescent; use grep -E
* Try Cirrus with a newer VM version
* Set CONTAINERS_CONF in the chroot-mount-flags integration test
* Update to match dependency API update
* Update github.com/openshift/imagebuilder and containers/common
* docs: correct default authfile path
* fix(deps): update module github.com/containerd/containerd to v1.7.13
* tests: retrofit test for heredoc summary
* build, heredoc: show heredoc summary in build output
* manifest, push: add support for --retry and --retry-delay
* fix(deps): update github.com/openshift/imagebuilder digest to b767bc3
* imagebuildah: fix crash with empty RUN
* fix(deps): update github.com/containers/luksy digest to b62d551
* fix(deps): update module github.com/opencontainers/runc to v1.1.12 [security]
* fix(deps): update module github.com/moby/buildkit to v0.12.5 [security]
* Make buildah match podman for handling of ulimits
* docs: move footnotes to where they're applicable
* Allow users to specify no-dereference
* Run codespell on code
* Fix FreeBSD version parsing
* Fix a build break on FreeBSD
* Remove a bad FROM line
* fix(deps): update module github.com/onsi/gomega to v1.31.1
* fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc6
* docs: use reversed logo for dark theme in README
* build,commit: add --sbom to scan and produce SBOMs when committing
* commit: force omitHistory if the parent has layers but no history
* docs: fix a couple of typos
* internal/mkcw.Archive(): handle extra image content
* stage_executor,heredoc: honor interpreter in heredoc
* stage_executor,layers: burst cache if heredoc content is changed
* fix(deps): update module golang.org/x/crypto to v0.18.0
* Replace map[K]bool with map[K]struct{} where it makes sense
* fix(deps): update module golang.org/x/sync to v0.6.0
* fix(deps): update module golang.org/x/term to v0.16.0
* Bump CI VMs
* Replace strings.SplitN with strings.Cut
* fix(deps): update github.com/containers/storage digest to ef81e9b
* fix(deps): update github.com/containers/image/v5 digest to 1b221d4
* fix(deps): update module github.com/fsouza/go-dockerclient to v1.10.1
* Document use of containers-transports values in buildah
* fix(deps): update module golang.org/x/crypto to v0.17.0 [security]
* chore(deps): update dependency containers/automation_images to v20231208
* manifest: addCompression use default from containers.conf
* commit: add a --add-file flag
* mkcw: populate the rootfs using an overlay
* chore(deps): update dependency containers/automation_images to v20230517
* [skip-ci] Update actions/stale action to v9
* fix(deps): update module github.com/containernetworking/plugins to v1.4.0
* fix(deps): update github.com/containers/image/v5 digest to 7a40fee
* Bump to v1.34.1-dev
* Ignore errors if label.Relabel returns ENOSUP
Patchnames: SUSE-2024-3120,SUSE-SLE-Micro-5.3-2024-3120,SUSE-SLE-Micro-5.4-2024-3120,SUSE-SLE-Micro-5.5-2024-3120,SUSE-SLE-Module-Containers-15-SP5-2024-3120,SUSE-SLE-Module-Containers-15-SP6-2024-3120,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-3120,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3120,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3120,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3120,SUSE-SUSE-MicroOS-5.1-2024-3120,SUSE-SUSE-MicroOS-5.2-2024-3120,SUSE-Storage-7.1-2024-3120,openSUSE-Leap-Micro-5.5-2024-3120,openSUSE-SLE-15.5-2024-3120,openSUSE-SLE-15.6-2024-3120
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.7 (Medium)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.3 (High)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.9 (Critical)
Affected products
Recommended
104 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
References
38 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah, docker",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah, docker fixes the following issues:\n\nChanges in docker:\n- CVE-2024-23651: Fixed arbitrary files write due to race condition on mounts (bsc#1219267)\n- CVE-2024-23652: Fixed insufficient validation of parent directory on mount (bsc#1219268)\n- CVE-2024-23653: Fixed insufficient validation on entitlement on container creation via buildkit (bsc#1219438)\n- CVE-2024-41110: A Authz zero length regression that could lead to authentication bypass was fixed (bsc#1228324)\n\nOther fixes:\n\n- Update to Docker 25.0.6-ce. See upstream changelog online at\n \u003chttps://docs.docker.com/engine/release-notes/25.0/#2506\u003e\n- Update to Docker 25.0.5-ce (bsc#1223409)\n\n- Fix BuildKit\u0027s symlink resolution logic to correctly handle non-lexical\n symlinks. (bsc#1221916)\n- Write volume options atomically so sudden system crashes won\u0027t result in\n future Docker starts failing due to empty files. (bsc#1214855)\n\nChanges in buildah:\n- Update to version 1.35.4:\n * [release-1.35] Bump to Buildah v1.35.4\n * [release-1.35] CVE-2024-3727 updates (bsc#1224117)\n * integration test: handle new labels in \u0027bud and test --unsetlabel\u0027\n * [release-1.35] Bump go-jose CVE-2024-28180\n * [release-1.35] Bump ocicrypt and go-jose CVE-2024-28180\n\n- Update to version 1.35.3:\n * [release-1.35] Bump to Buildah v1.35.3\n * [release-1.35] correctly configure /etc/hosts and resolv.conf\n * [release-1.35] buildah: refactor resolv/hosts setup.\n * [release-1.35] rename the hostFile var to reflect\n * [release-1.35] Bump c/common to v0.58.1\n * [release-1.35] Bump Buildah to v1.35.2\n * [release-1.35] CVE-2024-24786 protobuf to 1.33\n * [release-1.35] Bump to v1.35.2-dev\n\n- Update to version 1.35.1:\n * [release-1.35] Bump to v1.35.1\n * [release-1.35] CVE-2024-1753 container escape fix (bsc#1221677)\n\n- Buildah dropped cni support, require netavark instead (bsc#1221243)\n\n- Remove obsolete requires libcontainers-image \u0026 libcontainers-storage\n\n- Require passt for rootless networking (poo#156955)\n Buildah moved to passt/pasta for rootless networking from slirp4netns\n (https://github.com/containers/common/pull/1846)\n\n- Update to version 1.35.0:\n * Bump v1.35.0\n * Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0\n * conformance tests: don\u0027t break on trailing zeroes in layer blobs\n * Add a conformance test for copying to a mounted prior stage\n * fix(deps): update module github.com/stretchr/testify to v1.9.0\n * cgroups: reuse version check from c/common\n * Update vendor of containers/(common,image)\n * fix(deps): update github.com/containers/storage digest to eadc620\n * fix(deps): update github.com/containers/luksy digest to ceb12d4\n * fix(deps): update github.com/containers/image/v5 digest to cdc6802\n * manifest add: complain if we get artifact flags without --artifact\n * Use retry logic from containers/common\n * Vendor in containers/(storage,image,common)\n * Update module golang.org/x/crypto to v0.20.0\n * Add comment re: Total Success task name\n * tests: skip_if_no_unshare(): check for --setuid\n * Properly handle build --pull=false\n * [skip-ci] Update tim-actions/get-pr-commits action to v1.3.1\n * Update module go.etcd.io/bbolt to v1.3.9\n * Revert \u0027Reduce official image size\u0027\n * Update module github.com/opencontainers/image-spec to v1.1.0\n * Reduce official image size\n * Build with CNI support on FreeBSD\n * build --all-platforms: skip some base \u0027image\u0027 platforms\n * Bump main to v1.35.0-dev\n * Vendor in latest containers/(storage,image,common)\n * Split up error messages for missing --sbom related flags\n * `buildah manifest`: add artifact-related options\n * cmd/buildah/manifest.go: lock lists before adding/annotating/pushing\n * cmd/buildah/manifest.go: don\u0027t make struct declarations aliases\n * Use golang.org/x/exp/slices.Contains\n * Disable loong64 again\n * Fix a couple of typos in one-line comments\n * egrep is obsolescent; use grep -E\n * Try Cirrus with a newer VM version\n * Set CONTAINERS_CONF in the chroot-mount-flags integration test\n * Update to match dependency API update\n * Update github.com/openshift/imagebuilder and containers/common\n * docs: correct default authfile path\n * fix(deps): update module github.com/containerd/containerd to v1.7.13\n * tests: retrofit test for heredoc summary\n * build, heredoc: show heredoc summary in build output\n * manifest, push: add support for --retry and --retry-delay\n * fix(deps): update github.com/openshift/imagebuilder digest to b767bc3\n * imagebuildah: fix crash with empty RUN\n * fix(deps): update github.com/containers/luksy digest to b62d551\n * fix(deps): update module github.com/opencontainers/runc to v1.1.12 [security]\n * fix(deps): update module github.com/moby/buildkit to v0.12.5 [security]\n * Make buildah match podman for handling of ulimits\n * docs: move footnotes to where they\u0027re applicable\n * Allow users to specify no-dereference\n * Run codespell on code\n * Fix FreeBSD version parsing\n * Fix a build break on FreeBSD\n * Remove a bad FROM line\n * fix(deps): update module github.com/onsi/gomega to v1.31.1\n * fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc6\n * docs: use reversed logo for dark theme in README\n * build,commit: add --sbom to scan and produce SBOMs when committing\n * commit: force omitHistory if the parent has layers but no history\n * docs: fix a couple of typos\n * internal/mkcw.Archive(): handle extra image content\n * stage_executor,heredoc: honor interpreter in heredoc\n * stage_executor,layers: burst cache if heredoc content is changed\n * fix(deps): update module golang.org/x/crypto to v0.18.0\n * Replace map[K]bool with map[K]struct{} where it makes sense\n * fix(deps): update module golang.org/x/sync to v0.6.0\n * fix(deps): update module golang.org/x/term to v0.16.0\n * Bump CI VMs\n * Replace strings.SplitN with strings.Cut\n * fix(deps): update github.com/containers/storage digest to ef81e9b\n * fix(deps): update github.com/containers/image/v5 digest to 1b221d4\n * fix(deps): update module github.com/fsouza/go-dockerclient to v1.10.1\n * Document use of containers-transports values in buildah\n * fix(deps): update module golang.org/x/crypto to v0.17.0 [security]\n * chore(deps): update dependency containers/automation_images to v20231208\n * manifest: addCompression use default from containers.conf\n * commit: add a --add-file flag\n * mkcw: populate the rootfs using an overlay\n * chore(deps): update dependency containers/automation_images to v20230517\n * [skip-ci] Update actions/stale action to v9\n * fix(deps): update module github.com/containernetworking/plugins to v1.4.0\n * fix(deps): update github.com/containers/image/v5 digest to 7a40fee\n * Bump to v1.34.1-dev\n * Ignore errors if label.Relabel returns ENOSUP\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-3120,SUSE-SLE-Micro-5.3-2024-3120,SUSE-SLE-Micro-5.4-2024-3120,SUSE-SLE-Micro-5.5-2024-3120,SUSE-SLE-Module-Containers-15-SP5-2024-3120,SUSE-SLE-Module-Containers-15-SP6-2024-3120,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-3120,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3120,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3120,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-3120,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-3120,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3120,SUSE-SUSE-MicroOS-5.1-2024-3120,SUSE-SUSE-MicroOS-5.2-2024-3120,SUSE-Storage-7.1-2024-3120,openSUSE-Leap-Micro-5.5-2024-3120,openSUSE-SLE-15.5-2024-3120,openSUSE-SLE-15.6-2024-3120",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3120-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:3120-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243120-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:3120-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-September/036751.html"
},
{
"category": "self",
"summary": "SUSE Bug 1214855",
"url": "https://bugzilla.suse.com/1214855"
},
{
"category": "self",
"summary": "SUSE Bug 1219267",
"url": "https://bugzilla.suse.com/1219267"
},
{
"category": "self",
"summary": "SUSE Bug 1219268",
"url": "https://bugzilla.suse.com/1219268"
},
{
"category": "self",
"summary": "SUSE Bug 1219438",
"url": "https://bugzilla.suse.com/1219438"
},
{
"category": "self",
"summary": "SUSE Bug 1221243",
"url": "https://bugzilla.suse.com/1221243"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE Bug 1221916",
"url": "https://bugzilla.suse.com/1221916"
},
{
"category": "self",
"summary": "SUSE Bug 1223409",
"url": "https://bugzilla.suse.com/1223409"
},
{
"category": "self",
"summary": "SUSE Bug 1224117",
"url": "https://bugzilla.suse.com/1224117"
},
{
"category": "self",
"summary": "SUSE Bug 1228324",
"url": "https://bugzilla.suse.com/1228324"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23651 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23652 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23652/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23653 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23653/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-28180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-28180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-41110 page",
"url": "https://www.suse.com/security/cve/CVE-2024-41110/"
}
],
"title": "Security update for buildah, docker",
"tracking": {
"current_release_date": "2024-09-03T15:13:23Z",
"generator": {
"date": "2024-09-03T15:13:23Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:3120-1",
"initial_release_date": "2024-09-03T15:13:23Z",
"revision_history": [
{
"date": "2024-09-03T15:13:23Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150300.8.25.1.aarch64",
"product": {
"name": "buildah-1.35.4-150300.8.25.1.aarch64",
"product_id": "buildah-1.35.4-150300.8.25.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-25.0.6_ce-150000.207.1.aarch64",
"product": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64",
"product_id": "docker-25.0.6_ce-150000.207.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150300.8.25.1.i586",
"product": {
"name": "buildah-1.35.4-150300.8.25.1.i586",
"product_id": "buildah-1.35.4-150300.8.25.1.i586"
}
},
{
"category": "product_version",
"name": "docker-25.0.6_ce-150000.207.1.i586",
"product": {
"name": "docker-25.0.6_ce-150000.207.1.i586",
"product_id": "docker-25.0.6_ce-150000.207.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"product": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"product_id": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"product": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"product_id": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"product": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"product_id": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"product": {
"name": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"product_id": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150300.8.25.1.ppc64le",
"product": {
"name": "buildah-1.35.4-150300.8.25.1.ppc64le",
"product_id": "buildah-1.35.4-150300.8.25.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-25.0.6_ce-150000.207.1.ppc64le",
"product": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le",
"product_id": "docker-25.0.6_ce-150000.207.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150300.8.25.1.s390x",
"product": {
"name": "buildah-1.35.4-150300.8.25.1.s390x",
"product_id": "buildah-1.35.4-150300.8.25.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-25.0.6_ce-150000.207.1.s390x",
"product": {
"name": "docker-25.0.6_ce-150000.207.1.s390x",
"product_id": "docker-25.0.6_ce-150000.207.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150300.8.25.1.x86_64",
"product": {
"name": "buildah-1.35.4-150300.8.25.1.x86_64",
"product_id": "buildah-1.35.4-150300.8.25.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-25.0.6_ce-150000.207.1.x86_64",
"product": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64",
"product_id": "docker-25.0.6_ce-150000.207.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.1",
"product": {
"name": "SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.2",
"product": {
"name": "SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-microos:5.2"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 7.1",
"product": {
"name": "SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:7.1"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap Micro 5.5",
"product": {
"name": "openSUSE Leap Micro 5.5",
"product_id": "openSUSE Leap Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap-micro:5.5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
"product_id": "SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
"product_id": "SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150300.8.25.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64"
},
"product_reference": "buildah-1.35.4-150300.8.25.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of SUSE Enterprise Storage 7.1",
"product_id": "SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 7.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of openSUSE Leap Micro 5.5",
"product_id": "openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "openSUSE Leap Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of openSUSE Leap Micro 5.5",
"product_id": "openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "openSUSE Leap Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of openSUSE Leap Micro 5.5",
"product_id": "openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "openSUSE Leap Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-25.0.6_ce-150000.207.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64"
},
"product_reference": "docker-25.0.6_ce-150000.207.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch"
},
"product_reference": "docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
},
{
"cve": "CVE-2024-23651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23651"
}
],
"notes": [
{
"category": "general",
"text": "BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Two malicious build steps running in parallel sharing the same cache mounts with subpaths could cause a race condition that can lead to files from the host system being accessible to the build container. The issue has been fixed in v0.12.5. Workarounds include, avoiding using BuildKit frontend from an untrusted source or building an untrusted Dockerfile containing cache mounts with --mount=type=cache,source=... options.\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23651",
"url": "https://www.suse.com/security/cve/CVE-2024-23651"
},
{
"category": "external",
"summary": "SUSE Bug 1219267 for CVE-2024-23651",
"url": "https://bugzilla.suse.com/1219267"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "important"
}
],
"title": "CVE-2024-23651"
},
{
"cve": "CVE-2024-23652",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23652"
}
],
"notes": [
{
"category": "general",
"text": "BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for the mountpoints into removing a file outside the container, from the host system. The issue has been fixed in v0.12.5. Workarounds include avoiding using BuildKit frontends from an untrusted source or building an untrusted Dockerfile containing RUN --mount feature.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23652",
"url": "https://www.suse.com/security/cve/CVE-2024-23652"
},
{
"category": "external",
"summary": "SUSE Bug 1219268 for CVE-2024-23652",
"url": "https://bugzilla.suse.com/1219268"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-23652"
},
{
"cve": "CVE-2024-23653",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23653"
}
],
"notes": [
{
"category": "general",
"text": "BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In addition to running containers as build steps, BuildKit also provides APIs for running interactive containers based on built images. It was possible to use these APIs to ask BuildKit to run a container with elevated privileges. Normally, running such containers is only allowed if special `security.insecure` entitlement is enabled both by buildkitd configuration and allowed by the user initializing the build request. The issue has been fixed in v0.12.5 . Avoid using BuildKit frontends from untrusted sources. \n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23653",
"url": "https://www.suse.com/security/cve/CVE-2024-23653"
},
{
"category": "external",
"summary": "SUSE Bug 1219438 for CVE-2024-23653",
"url": "https://bugzilla.suse.com/1219438"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "important"
}
],
"title": "CVE-2024-23653"
},
{
"cve": "CVE-2024-24786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24786"
}
],
"notes": [
{
"category": "general",
"text": "The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24786",
"url": "https://www.suse.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "SUSE Bug 1226136 for CVE-2024-24786",
"url": "https://bugzilla.suse.com/1226136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "important"
}
],
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-28180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-28180"
}
],
"notes": [
{
"category": "general",
"text": "Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-28180",
"url": "https://www.suse.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "SUSE Bug 1234984 for CVE-2024-28180",
"url": "https://bugzilla.suse.com/1234984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "moderate"
}
],
"title": "CVE-2024-28180"
},
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
},
{
"cve": "CVE-2024-41110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-41110"
}
],
"notes": [
{
"category": "general",
"text": "Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain versions of Docker Engine, which could allow an attacker to bypass authorization plugins (AuthZ) under specific circumstances. The base likelihood of this being exploited is low.\n\nUsing a specially-crafted API request, an Engine API client could make the daemon forward the request or response to an authorization plugin without the body. In certain circumstances, the authorization plugin may allow a request which it would have otherwise denied if the body had been forwarded to it.\n\nA security issue was discovered In 2018, where an attacker could bypass AuthZ plugins using a specially crafted API request. This could lead to unauthorized actions, including privilege escalation. Although this issue was fixed in Docker Engine v18.09.1 in January 2019, the fix was not carried forward to later major versions, resulting in a regression. Anyone who depends on authorization plugins that introspect the request and/or response body to make access control decisions is potentially impacted.\n\nDocker EE v19.03.x and all versions of Mirantis Container Runtime are not vulnerable.\n\ndocker-ce v27.1.1 containes patches to fix the vulnerability. Patches have also been merged into the master, 19.03, 20.0, 23.0, 24.0, 25.0, 26.0, and 26.1 release branches. If one is unable to upgrade immediately, avoid using AuthZ plugins and/or restrict access to the Docker API to trusted parties, following the principle of least privilege.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-41110",
"url": "https://www.suse.com/security/cve/CVE-2024-41110"
},
{
"category": "external",
"summary": "SUSE Bug 1228324 for CVE-2024-41110",
"url": "https://bugzilla.suse.com/1228324"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.9,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Enterprise Storage 7.1:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Enterprise Storage 7.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Enterprise Storage 7.1:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Enterprise Storage 7.1:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.1:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP2-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP3-LTSS:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP2:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:buildah-1.35.4-150300.8.25.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP3:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-25.0.6_ce-150000.207.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.5:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.5:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.5:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.ppc64le",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap 15.6:docker-25.0.6_ce-150000.207.1.x86_64",
"openSUSE Leap 15.6:docker-bash-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-fish-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-rootless-extras-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap 15.6:docker-zsh-completion-25.0.6_ce-150000.207.1.noarch",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.aarch64",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.s390x",
"openSUSE Leap Micro 5.5:docker-25.0.6_ce-150000.207.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-03T15:13:23Z",
"details": "critical"
}
],
"title": "CVE-2024-41110"
}
]
}
SUSE-SU-2024:3151-1
Vulnerability from csaf_suse - Published: 2024-09-06 08:23 - Updated: 2024-09-06 08:23Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
Update to version 1.35.4:
* Bump to Buildah v1.35.4
* CVE-2024-3727 updates (bsc#1224117)
* integration test: handle new labels in 'bud and test --unsetlabel'
* Bump go-jose CVE-2024-28180
* Bump ocicrypt and go-jose CVE-2024-28180
Update to version 1.35.3:
* correctly configure /etc/hosts and resolv.conf
* buildah: refactor resolv/hosts setup.
* CVE-2024-24786 protobuf to 1.33
Update to version 1.35.1:
* CVE-2024-1753 container escape fix (bsc#1221677)
- Buildah dropped cni support, require netavark instead (bsc#1221243)
- Remove obsolete requires libcontainers-image & libcontainers-storage
- Require passt for rootless networking (poo#156955)
Buildah moved to passt/pasta for rootless networking from slirp4netns
(https://github.com/containers/common/pull/1846)
Update to version 1.35.0:
* Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0
* conformance tests: don't break on trailing zeroes in layer blobs
* Add a conformance test for copying to a mounted prior stage
* cgroups: reuse version check from c/common
* Update vendor of containers/(common,image)
* manifest add: complain if we get artifact flags without --artifact
* Use retry logic from containers/common
* Vendor in containers/(storage,image,common)
* Update module golang.org/x/crypto to v0.20.0
* Add comment re: Total Success task name
* tests: skip_if_no_unshare(): check for --setuid
* Properly handle build --pull=false
* [skip-ci] Update tim-actions/get-pr-commits action to v1.3.1
* Update module go.etcd.io/bbolt to v1.3.9
* Revert 'Reduce official image size'
* Update module github.com/opencontainers/image-spec to v1.1.0
* Reduce official image size
* Build with CNI support on FreeBSD
* build --all-platforms: skip some base 'image' platforms
* Bump main to v1.35.0-dev
* Vendor in latest containers/(storage,image,common)
* Split up error messages for missing --sbom related flags
* `buildah manifest`: add artifact-related options
* cmd/buildah/manifest.go: lock lists before adding/annotating/pushing
* cmd/buildah/manifest.go: don't make struct declarations aliases
* Use golang.org/x/exp/slices.Contains
* Disable loong64 again
* Fix a couple of typos in one-line comments
* egrep is obsolescent; use grep -E
* Try Cirrus with a newer VM version
* Set CONTAINERS_CONF in the chroot-mount-flags integration test
* Update to match dependency API update
* Update github.com/openshift/imagebuilder and containers/common
* docs: correct default authfile path
* tests: retrofit test for heredoc summary
* build, heredoc: show heredoc summary in build output
* manifest, push: add support for --retry and --retry-delay
* imagebuildah: fix crash with empty RUN
* Make buildah match podman for handling of ulimits
* docs: move footnotes to where they're applicable
* Allow users to specify no-dereference
* docs: use reversed logo for dark theme in README
* build,commit: add --sbom to scan and produce SBOMs when committing
* commit: force omitHistory if the parent has layers but no history
* docs: fix a couple of typos
* internal/mkcw.Archive(): handle extra image content
* stage_executor,heredoc: honor interpreter in heredoc
* stage_executor,layers: burst cache if heredoc content is changed
* Replace map[K]bool with map[K]struct{} where it makes sense
* Replace strings.SplitN with strings.Cut
* Document use of containers-transports values in buildah
* manifest: addCompression use default from containers.conf
* commit: add a --add-file flag
* mkcw: populate the rootfs using an overlay
* Ignore errors if label.Relabel returns ENOSUP
Patchnames: SUSE-2024-3151,SUSE-SLE-Module-Containers-15-SP5-2024-3151,SUSE-SLE-Module-Containers-15-SP6-2024-3151,openSUSE-SLE-15.5-2024-3151,openSUSE-SLE-15.6-2024-3151
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.3 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
19 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\nUpdate to version 1.35.4:\n\n* Bump to Buildah v1.35.4\n* CVE-2024-3727 updates (bsc#1224117)\n* integration test: handle new labels in \u0027bud and test --unsetlabel\u0027\n* Bump go-jose CVE-2024-28180\n* Bump ocicrypt and go-jose CVE-2024-28180\n\nUpdate to version 1.35.3:\n\n* correctly configure /etc/hosts and resolv.conf\n* buildah: refactor resolv/hosts setup.\n* CVE-2024-24786 protobuf to 1.33\n\n\nUpdate to version 1.35.1:\n\n* CVE-2024-1753 container escape fix (bsc#1221677)\n\n- Buildah dropped cni support, require netavark instead (bsc#1221243)\n\n- Remove obsolete requires libcontainers-image \u0026 libcontainers-storage\n\n- Require passt for rootless networking (poo#156955)\n Buildah moved to passt/pasta for rootless networking from slirp4netns\n (https://github.com/containers/common/pull/1846)\n\nUpdate to version 1.35.0:\n\n* Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0\n* conformance tests: don\u0027t break on trailing zeroes in layer blobs\n* Add a conformance test for copying to a mounted prior stage\n* cgroups: reuse version check from c/common\n* Update vendor of containers/(common,image)\n* manifest add: complain if we get artifact flags without --artifact\n* Use retry logic from containers/common\n* Vendor in containers/(storage,image,common)\n* Update module golang.org/x/crypto to v0.20.0\n* Add comment re: Total Success task name\n* tests: skip_if_no_unshare(): check for --setuid\n* Properly handle build --pull=false\n* [skip-ci] Update tim-actions/get-pr-commits action to v1.3.1\n* Update module go.etcd.io/bbolt to v1.3.9\n* Revert \u0027Reduce official image size\u0027\n* Update module github.com/opencontainers/image-spec to v1.1.0\n* Reduce official image size\n* Build with CNI support on FreeBSD\n* build --all-platforms: skip some base \u0027image\u0027 platforms\n* Bump main to v1.35.0-dev\n* Vendor in latest containers/(storage,image,common)\n* Split up error messages for missing --sbom related flags\n* `buildah manifest`: add artifact-related options\n* cmd/buildah/manifest.go: lock lists before adding/annotating/pushing\n* cmd/buildah/manifest.go: don\u0027t make struct declarations aliases\n* Use golang.org/x/exp/slices.Contains\n* Disable loong64 again\n* Fix a couple of typos in one-line comments\n* egrep is obsolescent; use grep -E\n* Try Cirrus with a newer VM version\n* Set CONTAINERS_CONF in the chroot-mount-flags integration test\n* Update to match dependency API update\n* Update github.com/openshift/imagebuilder and containers/common\n* docs: correct default authfile path\n* tests: retrofit test for heredoc summary\n* build, heredoc: show heredoc summary in build output\n* manifest, push: add support for --retry and --retry-delay\n* imagebuildah: fix crash with empty RUN\n* Make buildah match podman for handling of ulimits\n* docs: move footnotes to where they\u0027re applicable\n* Allow users to specify no-dereference\n* docs: use reversed logo for dark theme in README\n* build,commit: add --sbom to scan and produce SBOMs when committing\n* commit: force omitHistory if the parent has layers but no history\n* docs: fix a couple of typos\n* internal/mkcw.Archive(): handle extra image content\n* stage_executor,heredoc: honor interpreter in heredoc\n* stage_executor,layers: burst cache if heredoc content is changed\n* Replace map[K]bool with map[K]struct{} where it makes sense\n* Replace strings.SplitN with strings.Cut\n* Document use of containers-transports values in buildah\n* manifest: addCompression use default from containers.conf\n* commit: add a --add-file flag\n* mkcw: populate the rootfs using an overlay\n* Ignore errors if label.Relabel returns ENOSUP",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-3151,SUSE-SLE-Module-Containers-15-SP5-2024-3151,SUSE-SLE-Module-Containers-15-SP6-2024-3151,openSUSE-SLE-15.5-2024-3151,openSUSE-SLE-15.6-2024-3151",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3151-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:3151-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243151-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:3151-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2024-September/036812.html"
},
{
"category": "self",
"summary": "SUSE Bug 1221243",
"url": "https://bugzilla.suse.com/1221243"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE Bug 1224117",
"url": "https://bugzilla.suse.com/1224117"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-28180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-28180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2024-09-06T08:23:40Z",
"generator": {
"date": "2024-09-06T08:23:40Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:3151-1",
"initial_release_date": "2024-09-06T08:23:40Z",
"revision_history": [
{
"date": "2024-09-06T08:23:40Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150500.3.10.1.aarch64",
"product": {
"name": "buildah-1.35.4-150500.3.10.1.aarch64",
"product_id": "buildah-1.35.4-150500.3.10.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150500.3.10.1.i586",
"product": {
"name": "buildah-1.35.4-150500.3.10.1.i586",
"product_id": "buildah-1.35.4-150500.3.10.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150500.3.10.1.ppc64le",
"product": {
"name": "buildah-1.35.4-150500.3.10.1.ppc64le",
"product_id": "buildah-1.35.4-150500.3.10.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150500.3.10.1.s390x",
"product": {
"name": "buildah-1.35.4-150500.3.10.1.s390x",
"product_id": "buildah-1.35.4-150500.3.10.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150500.3.10.1.x86_64",
"product": {
"name": "buildah-1.35.4-150500.3.10.1.x86_64",
"product_id": "buildah-1.35.4-150500.3.10.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp6"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP6",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.ppc64le as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.s390x as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150500.3.10.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
},
"product_reference": "buildah-1.35.4-150500.3.10.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-06T08:23:40Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
},
{
"cve": "CVE-2024-24786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24786"
}
],
"notes": [
{
"category": "general",
"text": "The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24786",
"url": "https://www.suse.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "SUSE Bug 1226136 for CVE-2024-24786",
"url": "https://bugzilla.suse.com/1226136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-06T08:23:40Z",
"details": "important"
}
],
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-28180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-28180"
}
],
"notes": [
{
"category": "general",
"text": "Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-28180",
"url": "https://www.suse.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "SUSE Bug 1234984 for CVE-2024-28180",
"url": "https://bugzilla.suse.com/1234984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-06T08:23:40Z",
"details": "moderate"
}
],
"title": "CVE-2024-28180"
},
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP5:buildah-1.35.4-150500.3.10.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP6:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.5:buildah-1.35.4-150500.3.10.1.x86_64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.aarch64",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.ppc64le",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.s390x",
"openSUSE Leap 15.6:buildah-1.35.4-150500.3.10.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-06T08:23:40Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
SUSE-SU-2024:3186-1
Vulnerability from csaf_suse - Published: 2024-09-10 07:43 - Updated: 2024-09-10 07:43Summary
Security update for buildah
Severity
Important
Notes
Title of the patch: Security update for buildah
Description of the patch: This update for buildah fixes the following issues:
Update to version 1.35.4:
* CVE-2024-3727 updates (bsc#1224117)
* Bump go-jose CVE-2024-28180
* Bump ocicrypt and go-jose CVE-2024-28180
Update to version 1.35.3:
* correctly configure /etc/hosts and resolv.conf
* buildah: refactor resolv/hosts setup.
* rename the hostFile var to reflect
* CVE-2024-24786 protobuf to 1.33
Update to version 1.35.1:
* CVE-2024-1753 container escape fix (bsc#1221677)
- Buildah dropped cni support, require netavark instead (bsc#1221243)
- Remove obsolete requires libcontainers-image & libcontainers-storage
- Require passt for rootless networking (poo#156955)
Buildah moved to passt/pasta for rootless networking from slirp4netns
(https://github.com/containers/common/pull/1846)
Update to version 1.35.0:
* Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0
* conformance tests: don't break on trailing zeroes in layer blobs
* Add a conformance test for copying to a mounted prior stage
* cgroups: reuse version check from c/common
* Update vendor of containers/(common,image)
* manifest add: complain if we get artifact flags without --artifact
* Use retry logic from containers/common
* Vendor in containers/(storage,image,common)
* Update module golang.org/x/crypto to v0.20.0
* Add comment re: Total Success task name
* tests: skip_if_no_unshare(): check for --setuid
* Properly handle build --pull=false
* Update module go.etcd.io/bbolt to v1.3.9
* Update module github.com/opencontainers/image-spec to v1.1.0
* build --all-platforms: skip some base 'image' platforms
* Bump main to v1.35.0-dev
* Vendor in latest containers/(storage,image,common)
* Split up error messages for missing --sbom related flags
* `buildah manifest`: add artifact-related options
* cmd/buildah/manifest.go: lock lists before adding/annotating/pushing
* cmd/buildah/manifest.go: don't make struct declarations aliases
* Use golang.org/x/exp/slices.Contains
* Try Cirrus with a newer VM version
* Set CONTAINERS_CONF in the chroot-mount-flags integration test
* Update to match dependency API update
* Update github.com/openshift/imagebuilder and containers/common
* docs: correct default authfile path
* tests: retrofit test for heredoc summary
* build, heredoc: show heredoc summary in build output
* manifest, push: add support for --retry and --retry-delay
* imagebuildah: fix crash with empty RUN
* Make buildah match podman for handling of ulimits
* docs: move footnotes to where they're applicable
* Allow users to specify no-dereference
* docs: use reversed logo for dark theme in README
* build,commit: add --sbom to scan and produce SBOMs when committing
* commit: force omitHistory if the parent has layers but no history
* docs: fix a couple of typos
* internal/mkcw.Archive(): handle extra image content
* stage_executor,heredoc: honor interpreter in heredoc
* stage_executor,layers: burst cache if heredoc content is changed
* Replace map[K]bool with map[K]struct{} where it makes sense
* Bump CI VMs
* Replace strings.SplitN with strings.Cut
* Document use of containers-transports values in buildah
* manifest: addCompression use default from containers.conf
* commit: add a --add-file flag
* mkcw: populate the rootfs using an overlay
* [skip-ci] Update actions/stale action to v9
* Ignore errors if label.Relabel returns ENOSUP
Patchnames: SUSE-2024-3186,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3186,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3186,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3186,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3186
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.6 (High)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.3 (High)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
19 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for buildah",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for buildah fixes the following issues:\n\nUpdate to version 1.35.4:\n\n* CVE-2024-3727 updates (bsc#1224117)\n* Bump go-jose CVE-2024-28180\n* Bump ocicrypt and go-jose CVE-2024-28180\n\nUpdate to version 1.35.3:\n\n* correctly configure /etc/hosts and resolv.conf\n* buildah: refactor resolv/hosts setup.\n* rename the hostFile var to reflect\n* CVE-2024-24786 protobuf to 1.33\n\n\nUpdate to version 1.35.1:\n\n* CVE-2024-1753 container escape fix (bsc#1221677)\n\n- Buildah dropped cni support, require netavark instead (bsc#1221243)\n\n- Remove obsolete requires libcontainers-image \u0026 libcontainers-storage\n\n- Require passt for rootless networking (poo#156955)\n Buildah moved to passt/pasta for rootless networking from slirp4netns\n (https://github.com/containers/common/pull/1846)\n\nUpdate to version 1.35.0:\n\n* Bump c/common v0.58.0, c/image v5.30.0, c/storage v1.53.0\n* conformance tests: don\u0027t break on trailing zeroes in layer blobs\n* Add a conformance test for copying to a mounted prior stage\n* cgroups: reuse version check from c/common\n* Update vendor of containers/(common,image)\n* manifest add: complain if we get artifact flags without --artifact\n* Use retry logic from containers/common\n* Vendor in containers/(storage,image,common)\n* Update module golang.org/x/crypto to v0.20.0\n* Add comment re: Total Success task name\n* tests: skip_if_no_unshare(): check for --setuid\n* Properly handle build --pull=false\n* Update module go.etcd.io/bbolt to v1.3.9\n* Update module github.com/opencontainers/image-spec to v1.1.0\n* build --all-platforms: skip some base \u0027image\u0027 platforms\n* Bump main to v1.35.0-dev\n* Vendor in latest containers/(storage,image,common)\n* Split up error messages for missing --sbom related flags\n* `buildah manifest`: add artifact-related options\n* cmd/buildah/manifest.go: lock lists before adding/annotating/pushing\n* cmd/buildah/manifest.go: don\u0027t make struct declarations aliases\n* Use golang.org/x/exp/slices.Contains\n* Try Cirrus with a newer VM version\n* Set CONTAINERS_CONF in the chroot-mount-flags integration test\n* Update to match dependency API update\n* Update github.com/openshift/imagebuilder and containers/common\n* docs: correct default authfile path\n* tests: retrofit test for heredoc summary\n* build, heredoc: show heredoc summary in build output\n* manifest, push: add support for --retry and --retry-delay\n* imagebuildah: fix crash with empty RUN\n* Make buildah match podman for handling of ulimits\n* docs: move footnotes to where they\u0027re applicable\n* Allow users to specify no-dereference\n* docs: use reversed logo for dark theme in README\n* build,commit: add --sbom to scan and produce SBOMs when committing\n* commit: force omitHistory if the parent has layers but no history\n* docs: fix a couple of typos\n* internal/mkcw.Archive(): handle extra image content\n* stage_executor,heredoc: honor interpreter in heredoc\n* stage_executor,layers: burst cache if heredoc content is changed\n* Replace map[K]bool with map[K]struct{} where it makes sense\n* Bump CI VMs\n* Replace strings.SplitN with strings.Cut\n* Document use of containers-transports values in buildah\n* manifest: addCompression use default from containers.conf\n* commit: add a --add-file flag\n* mkcw: populate the rootfs using an overlay\n* [skip-ci] Update actions/stale action to v9\n* Ignore errors if label.Relabel returns ENOSUP",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-3186,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3186,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3186,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3186,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3186",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_3186-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:3186-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20243186-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:3186-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019398.html"
},
{
"category": "self",
"summary": "SUSE Bug 1221243",
"url": "https://bugzilla.suse.com/1221243"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE Bug 1224117",
"url": "https://bugzilla.suse.com/1224117"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-24786 page",
"url": "https://www.suse.com/security/cve/CVE-2024-24786/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-28180 page",
"url": "https://www.suse.com/security/cve/CVE-2024-28180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-3727 page",
"url": "https://www.suse.com/security/cve/CVE-2024-3727/"
}
],
"title": "Security update for buildah",
"tracking": {
"current_release_date": "2024-09-10T07:43:19Z",
"generator": {
"date": "2024-09-10T07:43:19Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:3186-1",
"initial_release_date": "2024-09-10T07:43:19Z",
"revision_history": [
{
"date": "2024-09-10T07:43:19Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150400.3.30.1.aarch64",
"product": {
"name": "buildah-1.35.4-150400.3.30.1.aarch64",
"product_id": "buildah-1.35.4-150400.3.30.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150400.3.30.1.i586",
"product": {
"name": "buildah-1.35.4-150400.3.30.1.i586",
"product_id": "buildah-1.35.4-150400.3.30.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150400.3.30.1.ppc64le",
"product": {
"name": "buildah-1.35.4-150400.3.30.1.ppc64le",
"product_id": "buildah-1.35.4-150400.3.30.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150400.3.30.1.s390x",
"product": {
"name": "buildah-1.35.4-150400.3.30.1.s390x",
"product_id": "buildah-1.35.4-150400.3.30.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1.35.4-150400.3.30.1.x86_64",
"product": {
"name": "buildah-1.35.4-150400.3.30.1.x86_64",
"product_id": "buildah-1.35.4-150400.3.30.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150400.3.30.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64"
},
"product_reference": "buildah-1.35.4-150400.3.30.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150400.3.30.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64"
},
"product_reference": "buildah-1.35.4-150400.3.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150400.3.30.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64"
},
"product_reference": "buildah-1.35.4-150400.3.30.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150400.3.30.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64"
},
"product_reference": "buildah-1.35.4-150400.3.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150400.3.30.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64"
},
"product_reference": "buildah-1.35.4-150400.3.30.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150400.3.30.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150400.3.30.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150400.3.30.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x"
},
"product_reference": "buildah-1.35.4-150400.3.30.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150400.3.30.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64"
},
"product_reference": "buildah-1.35.4-150400.3.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150400.3.30.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le"
},
"product_reference": "buildah-1.35.4-150400.3.30.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1.35.4-150400.3.30.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
},
"product_reference": "buildah-1.35.4-150400.3.30.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-10T07:43:19Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
},
{
"cve": "CVE-2024-24786",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-24786"
}
],
"notes": [
{
"category": "general",
"text": "The protojson.Unmarshal function can enter an infinite loop when unmarshaling certain forms of invalid JSON. This condition can occur when unmarshaling into a message which contains a google.protobuf.Any value, or when the UnmarshalOptions.DiscardUnknown option is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-24786",
"url": "https://www.suse.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "SUSE Bug 1226136 for CVE-2024-24786",
"url": "https://bugzilla.suse.com/1226136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-10T07:43:19Z",
"details": "important"
}
],
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-28180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-28180"
}
],
"notes": [
{
"category": "general",
"text": "Package jose aims to provide an implementation of the Javascript Object Signing and Encryption set of standards. An attacker could send a JWE containing compressed data that used large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti. Those functions now return an error if the decompressed data would exceed 250kB or 10x the compressed size (whichever is larger). This vulnerability has been patched in versions 4.0.1, 3.0.3 and 2.6.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-28180",
"url": "https://www.suse.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "SUSE Bug 1234984 for CVE-2024-28180",
"url": "https://bugzilla.suse.com/1234984"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-10T07:43:19Z",
"details": "moderate"
}
],
"title": "CVE-2024-28180"
},
{
"cve": "CVE-2024-3727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-3727"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-3727",
"url": "https://www.suse.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "SUSE Bug 1224112 for CVE-2024-3727",
"url": "https://bugzilla.suse.com/1224112"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:buildah-1.35.4-150400.3.30.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:buildah-1.35.4-150400.3.30.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-09-10T07:43:19Z",
"details": "important"
}
],
"title": "CVE-2024-3727"
}
]
}
SUSE-SU-2025:0267-1
Vulnerability from csaf_suse - Published: 2025-01-28 11:25 - Updated: 2025-01-28 11:25Summary
Security update for podman
Severity
Important
Notes
Title of the patch: Security update for podman
Description of the patch:
This update for podman fixes the following issues:
- CVE-2024-9676: github.com/containers/storage: Fixed symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS) (bsc#1231698)
- Load ip_tables and ip6_tables kernel module (bsc#1214612)
* Required for rootless mode as a regular user has no permission
to load kernel modules
- CVE-2024-9675: Fixed cache arbitrary directory mount in buildah (bsc#1231499)
- CVE-2024-9407: Fixed Improper Input Validation in bind-propagation Option of Dockerfile RUN --mount Instruction in buildah (bsc#1231208)
- CVE-2024-9341: cri-o: FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library (bsc#1231230)
- CVE-2024-1753: Fixed full container escape at build time in buildah (bsc#1221677)
- CVE-2024-11218: Fixed a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. (bsc#1236270)
- Refactor network backend dependencies:
* podman requires either netavark or cni-plugins. On ALP, require
netavark, otherwise prefer netavark but don't force it.
* This fixes missing cni-plugins in some scenarios
* Default to netavark everywhere where it's available
Patchnames: SUSE-2025-267,SUSE-SLE-Micro-5.3-2025-267,SUSE-SLE-Micro-5.4-2025-267,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-267,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-267,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-267,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-267
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.7 (High)
Affected products
Recommended
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.6 (High)
Affected products
Recommended
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.4 (Medium)
Affected products
Recommended
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.4 (Medium)
Affected products
Recommended
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.7 (Medium)
Affected products
Recommended
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
33 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for podman",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update for podman fixes the following issues:\n\n- CVE-2024-9676: github.com/containers/storage: Fixed symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS) (bsc#1231698) \n\n- Load ip_tables and ip6_tables kernel module (bsc#1214612)\n * Required for rootless mode as a regular user has no permission\n to load kernel modules\n\n- CVE-2024-9675: Fixed cache arbitrary directory mount in buildah (bsc#1231499)\n- CVE-2024-9407: Fixed Improper Input Validation in bind-propagation Option of Dockerfile RUN --mount Instruction in buildah (bsc#1231208)\n- CVE-2024-9341: cri-o: FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library (bsc#1231230)\n- CVE-2024-1753: Fixed full container escape at build time in buildah (bsc#1221677)\n- CVE-2024-11218: Fixed a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. (bsc#1236270)\n\n- Refactor network backend dependencies:\n * podman requires either netavark or cni-plugins. On ALP, require\n netavark, otherwise prefer netavark but don\u0027t force it.\n * This fixes missing cni-plugins in some scenarios\n * Default to netavark everywhere where it\u0027s available\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-267,SUSE-SLE-Micro-5.3-2025-267,SUSE-SLE-Micro-5.4-2025-267,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-267,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-267,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-267,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-267",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_0267-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:0267-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20250267-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:0267-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020225.html"
},
{
"category": "self",
"summary": "SUSE Bug 1214612",
"url": "https://bugzilla.suse.com/1214612"
},
{
"category": "self",
"summary": "SUSE Bug 1215807",
"url": "https://bugzilla.suse.com/1215807"
},
{
"category": "self",
"summary": "SUSE Bug 1215926",
"url": "https://bugzilla.suse.com/1215926"
},
{
"category": "self",
"summary": "SUSE Bug 1217828",
"url": "https://bugzilla.suse.com/1217828"
},
{
"category": "self",
"summary": "SUSE Bug 1221677",
"url": "https://bugzilla.suse.com/1221677"
},
{
"category": "self",
"summary": "SUSE Bug 1231208",
"url": "https://bugzilla.suse.com/1231208"
},
{
"category": "self",
"summary": "SUSE Bug 1231230",
"url": "https://bugzilla.suse.com/1231230"
},
{
"category": "self",
"summary": "SUSE Bug 1231499",
"url": "https://bugzilla.suse.com/1231499"
},
{
"category": "self",
"summary": "SUSE Bug 1231698",
"url": "https://bugzilla.suse.com/1231698"
},
{
"category": "self",
"summary": "SUSE Bug 1236270",
"url": "https://bugzilla.suse.com/1236270"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-11218 page",
"url": "https://www.suse.com/security/cve/CVE-2024-11218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1753 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-9341 page",
"url": "https://www.suse.com/security/cve/CVE-2024-9341/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-9407 page",
"url": "https://www.suse.com/security/cve/CVE-2024-9407/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-9675 page",
"url": "https://www.suse.com/security/cve/CVE-2024-9675/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-9676 page",
"url": "https://www.suse.com/security/cve/CVE-2024-9676/"
}
],
"title": "Security update for podman",
"tracking": {
"current_release_date": "2025-01-28T11:25:30Z",
"generator": {
"date": "2025-01-28T11:25:30Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:0267-1",
"initial_release_date": "2025-01-28T11:25:30Z",
"revision_history": [
{
"date": "2025-01-28T11:25:30Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.35.1.aarch64",
"product": {
"name": "podman-4.9.5-150400.4.35.1.aarch64",
"product_id": "podman-4.9.5-150400.4.35.1.aarch64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.35.1.aarch64",
"product": {
"name": "podman-remote-4.9.5-150400.4.35.1.aarch64",
"product_id": "podman-remote-4.9.5-150400.4.35.1.aarch64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.35.1.aarch64",
"product": {
"name": "podmansh-4.9.5-150400.4.35.1.aarch64",
"product_id": "podmansh-4.9.5-150400.4.35.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.35.1.i586",
"product": {
"name": "podman-4.9.5-150400.4.35.1.i586",
"product_id": "podman-4.9.5-150400.4.35.1.i586"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.35.1.i586",
"product": {
"name": "podman-remote-4.9.5-150400.4.35.1.i586",
"product_id": "podman-remote-4.9.5-150400.4.35.1.i586"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.35.1.i586",
"product": {
"name": "podmansh-4.9.5-150400.4.35.1.i586",
"product_id": "podmansh-4.9.5-150400.4.35.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4.9.5-150400.4.35.1.noarch",
"product": {
"name": "podman-docker-4.9.5-150400.4.35.1.noarch",
"product_id": "podman-docker-4.9.5-150400.4.35.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.35.1.ppc64le",
"product": {
"name": "podman-4.9.5-150400.4.35.1.ppc64le",
"product_id": "podman-4.9.5-150400.4.35.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.35.1.ppc64le",
"product": {
"name": "podman-remote-4.9.5-150400.4.35.1.ppc64le",
"product_id": "podman-remote-4.9.5-150400.4.35.1.ppc64le"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.35.1.ppc64le",
"product": {
"name": "podmansh-4.9.5-150400.4.35.1.ppc64le",
"product_id": "podmansh-4.9.5-150400.4.35.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.35.1.s390x",
"product": {
"name": "podman-4.9.5-150400.4.35.1.s390x",
"product_id": "podman-4.9.5-150400.4.35.1.s390x"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.35.1.s390x",
"product": {
"name": "podman-remote-4.9.5-150400.4.35.1.s390x",
"product_id": "podman-remote-4.9.5-150400.4.35.1.s390x"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.35.1.s390x",
"product": {
"name": "podmansh-4.9.5-150400.4.35.1.s390x",
"product_id": "podmansh-4.9.5-150400.4.35.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4.9.5-150400.4.35.1.x86_64",
"product": {
"name": "podman-4.9.5-150400.4.35.1.x86_64",
"product_id": "podman-4.9.5-150400.4.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "podman-remote-4.9.5-150400.4.35.1.x86_64",
"product": {
"name": "podman-remote-4.9.5-150400.4.35.1.x86_64",
"product_id": "podman-remote-4.9.5-150400.4.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "podmansh-4.9.5-150400.4.35.1.x86_64",
"product": {
"name": "podmansh-4.9.5-150400.4.35.1.x86_64",
"product_id": "podmansh-4.9.5-150400.4.35.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x"
},
"product_reference": "podman-4.9.5-150400.4.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.aarch64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.s390x as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x"
},
"product_reference": "podman-4.9.5-150400.4.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.aarch64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.s390x as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.35.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.35.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.35.1.noarch as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.35.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le"
},
"product_reference": "podman-4.9.5-150400.4.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x"
},
"product_reference": "podman-4.9.5-150400.4.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.35.1.noarch as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.35.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le"
},
"product_reference": "podman-4.9.5-150400.4.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4.9.5-150400.4.35.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch"
},
"product_reference": "podman-docker-4.9.5-150400.4.35.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4.9.5-150400.4.35.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
},
"product_reference": "podman-remote-4.9.5-150400.4.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-11218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-11218"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-11218",
"url": "https://www.suse.com/security/cve/CVE-2024-11218"
},
{
"category": "external",
"summary": "SUSE Bug 1236269 for CVE-2024-11218",
"url": "https://bugzilla.suse.com/1236269"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T11:25:30Z",
"details": "important"
}
],
"title": "CVE-2024-11218"
},
{
"cve": "CVE-2024-1753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1753"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation to mount the host root filesystem inside the RUN step. The commands inside the RUN step will then have read-write access to the host filesystem, allowing for full container escape at build time.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1753",
"url": "https://www.suse.com/security/cve/CVE-2024-1753"
},
{
"category": "external",
"summary": "SUSE Bug 1221677 for CVE-2024-1753",
"url": "https://bugzilla.suse.com/1221677"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T11:25:30Z",
"details": "important"
}
],
"title": "CVE-2024-1753"
},
{
"cve": "CVE-2024-9341",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-9341"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host directories inside a container. This issue also allows attackers to access critical host files, bypassing the intended isolation between containers and the host system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-9341",
"url": "https://www.suse.com/security/cve/CVE-2024-9341"
},
{
"category": "external",
"summary": "SUSE Bug 1231230 for CVE-2024-9341",
"url": "https://bugzilla.suse.com/1231230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T11:25:30Z",
"details": "moderate"
}
],
"title": "CVE-2024-9341"
},
{
"cve": "CVE-2024-9407",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-9407"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability exists in the bind-propagation option of the Dockerfile RUN --mount instruction. The system does not properly validate the input passed to this option, allowing users to pass arbitrary parameters to the mount instruction. This issue can be exploited to mount sensitive directories from the host into a container during the build process and, in some cases, modify the contents of those mounted files. Even if SELinux is used, this vulnerability can bypass its protection by allowing the source directory to be relabeled to give the container access to host files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-9407",
"url": "https://www.suse.com/security/cve/CVE-2024-9407"
},
{
"category": "external",
"summary": "SUSE Bug 1231208 for CVE-2024-9407",
"url": "https://bugzilla.suse.com/1231208"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T11:25:30Z",
"details": "moderate"
}
],
"title": "CVE-2024-9407"
},
{
"cve": "CVE-2024-9675",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-9675"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to mount an arbitrary directory from the host (read/write) into the container as long as those files can be accessed by the user running Buildah.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-9675",
"url": "https://www.suse.com/security/cve/CVE-2024-9675"
},
{
"category": "external",
"summary": "SUSE Bug 1231499 for CVE-2024-9675",
"url": "https://bugzilla.suse.com/1231499"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T11:25:30Z",
"details": "moderate"
}
],
"title": "CVE-2024-9675"
},
{
"cve": "CVE-2024-9676",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-9676"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace (`--userns=auto` in Podman and Buildah). The containers/storage library will read /etc/passwd inside the container, but does not properly validate if that file is a symlink, which can be used to cause the library to read an arbitrary file on the host.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-9676",
"url": "https://www.suse.com/security/cve/CVE-2024-9676"
},
{
"category": "external",
"summary": "SUSE Bug 1231698 for CVE-2024-9676",
"url": "https://bugzilla.suse.com/1231698"
},
{
"category": "external",
"summary": "SUSE Bug 1231785 for CVE-2024-9676",
"url": "https://bugzilla.suse.com/1231785"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.3:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Micro 5.4:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:podman-remote-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-4.9.5-150400.4.35.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-docker-4.9.5-150400.4.35.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:podman-remote-4.9.5-150400.4.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-01-28T11:25:30Z",
"details": "moderate"
}
],
"title": "CVE-2024-9676"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…