Fedora 38 podman-tui 1.0.0 Critical Advisory for Improper Data Handling
fedora
March 30, 2024
podman-tui release v1.0.0 Security fix for [CVE-2024-28180]
Summary
podman-tui is a terminal user interface for Podman v4.
podman-tui is using podman.socket service to communicate with podman environment
and SSH to connect to remote podman machines.
Update Information:
podman-tui release v1.0.0 Security fix for [CVE-2024-28180]
Topics Covered
Change Log
* Thu Mar 21 2024 Navid Yaghoobi
References
[ 1 ] Bug #2268848 - CVE-2024-28176 podman-tui: go-jose: resource exhaustion [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2268848
[ 2 ] Bug #2268895 - CVE-2024-28180 podman-tui: jose-go: improper handling of highly compressed data [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2268895
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-529fe8a802' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: podman-tui
Product: Fedora 38
Version: 1.0.0
Release: 1.fc38
Summary: Podman Terminal User Interface
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!