Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 39 Podman Security Fix: 2024-dd32f390b3 Critical Container Escape

fedora
Calendar Grey April 3, 2024
Dist Fedora Esm H88
Ubuntu enhances Docker with vulnerability patches, addressing CVE-2024-1754, bolstering container orchestration safety and performance.
Security fix for CVE-2024-1753 Automatic update for podman-4.9.4-1.fc39

Summary

podman (Pod Manager) is a fully featured container engine that is a simple

daemonless tool. podman provides a Docker-CLI comparable command line that

eases the transition from other container engines and allows the management of

pods, containers and images. Simply put: alias docker=podman.

Most podman commands can be run as a regular user, without requiring

additional privileges.

podman uses Buildah(1) internally to create container images.

Both tools share image (not container) storage, hence each can use or

manipulate images (but not containers) created by the other.

Manage Pods, Containers and Container Images

%{repo} Simple management tool for pods, containers and images

Update Information:

Security fix for CVE-2024-1753 Automatic update for podman-4.9.4-1.fc39. Changelog for podman * Mon Mar 25 2024 Packit - 5:4.9.4-1 - [packit] 4.9.4 upstream release * Fri Mar 01 2024 Debarshi Ray - 5:4.9.3-5 - Show the toolbox RPMs used to run the tests * Fri Mar 01 2024 Debarshi Ray - 5:4.9.3-4 - Avoid running out of storage space when running the Toolbx tests * Fri Mar 01 2024 Debarshi Ray - 5:4.9.3-3 - Silence warnings about deprecated grep(1) use in test logs * Fri Mar 01 2024 Debarshi Ray - 5:4.9.3-2 - Update how Toolbx is spelt

Topics%20covered

Topics Covered

security advisory critical Fedora security fix buildah podman container engine

Change Log

* Mon Mar 25 2024 Packit - 5:4.9.4-1 - [packit] 4.9.4 upstream release * Fri Mar 1 2024 Debarshi Ray - 5:4.9.3-5 - Show the toolbox RPMs used to run the tests * Fri Mar 1 2024 Debarshi Ray - 5:4.9.3-4 - Avoid running out of storage space when running the Toolbx tests * Fri Mar 1 2024 Debarshi Ray - 5:4.9.3-3 - Silence warnings about deprecated grep(1) use in test logs * Fri Mar 1 2024 Debarshi Ray - 5:4.9.3-2 - Update how Toolbx is spelt

References


[ 1 ] Bug #2265513 - CVE-2024-1753 buildah: full container escape at build time https://bugzilla.redhat.com/show_bug.cgi?id=2265513

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-dd32f390b3' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: podman
Product: Fedora 39
Version: 4.9.4
Release: 1.fc39
URL: https://podman.io/
Summary: Manage Pods, Containers and Container Images

Topics%20covered

Topics Covered

security advisory critical Fedora security fix buildah podman container engine

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here