Anolis OS update for container-tools:an8 module



Risk Medium
Patch available YES
Number of vulnerabilities 8
CVE-ID CVE-2023-45290
CVE-2024-1394
CVE-2024-24783
CVE-2024-24784
CVE-2024-24789
CVE-2024-3727
CVE-2024-37298
CVE-2024-6104
CWE-ID CWE-400
CWE-401
CWE-388
CWE-20
CWE-354
CWE-532
Exploitation vector Network
Public exploit N/A
Vulnerable software
 Anolis OS
Operating systems & Components / Operating system

podman-docker
Operating systems & Components / Operating system package or component

runc
Operating systems & Components / Operating system package or component

podman-tests
Operating systems & Components / Operating system package or component

podman-remote
Operating systems & Components / Operating system package or component

podman-plugins
Operating systems & Components / Operating system package or component

podman-gvproxy
Operating systems & Components / Operating system package or component

podman-catatonit
Operating systems & Components / Operating system package or component

podman
Operating systems & Components / Operating system package or component

buildah-tests
Operating systems & Components / Operating system package or component

buildah
Operating systems & Components / Operating system package or component

python3-podman
Operating systems & Components / Operating system package or component

skopeo-tests
Operating systems & Components / Operating system package or component

skopeo
Operating systems & Components / Operating system package or component

containers-common
Operating systems & Components / Operating system package or component

containernetworking-plugins
Operating systems & Components / Operating system package or component

udica
Operating systems & Components / Operating system package or component

container-selinux
Operating systems & Components / Operating system package or component

cockpit-podman
Operating systems & Components / Operating system package or component

toolbox-tests
Operating systems & Components / Operating system package or component

toolbox
Operating systems & Components / Operating system package or component

slirp4netns
Operating systems & Components / Operating system package or component

python3-criu
Operating systems & Components / Operating system package or component

oci-seccomp-bpf-hook
Operating systems & Components / Operating system package or component

netavark
Operating systems & Components / Operating system package or component

libslirp-devel
Operating systems & Components / Operating system package or component

libslirp
Operating systems & Components / Operating system package or component

fuse-overlayfs
Operating systems & Components / Operating system package or component

crun
Operating systems & Components / Operating system package or component

criu-libs
Operating systems & Components / Operating system package or component

criu-devel
Operating systems & Components / Operating system package or component

criu
Operating systems & Components / Operating system package or component

crit
Operating systems & Components / Operating system package or component

conmon
Operating systems & Components / Operating system package or component

aardvark-dns
Operating systems & Components / Operating system package or component

Vendor OpenAnolis

Security Bulletin

This security bulletin contains information about 8 vulnerabilities.

1) Resource exhaustion

EUVDB-ID: #VU87197

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-45290

CWE-ID: CWE-400 - Resource exhaustion

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists in net/http due to application does not properly control consumption of internal resources when parsing a multipart form (either explicitly with Request.ParseMultipartForm or implicitly with Request.FormValue, Request.PostFormValue, or Request.FormFile). A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

podman-docker: before 4.9.4-12.0.1

runc: before 1.1.12-4.0.1

podman-tests: before 4.9.4-12.0.1

podman-remote: before 4.9.4-12.0.1

podman-plugins: before 4.9.4-12.0.1

podman-gvproxy: before 4.9.4-12.0.1

podman-catatonit: before 4.9.4-12.0.1

podman: before 4.9.4-12.0.1

buildah-tests: before 1.34.0-1

buildah: before 1.34.0-1

python3-podman: before 4.9.0-2

skopeo-tests: before 1.14.5-3.0.1

skopeo: before 1.14.5-3.0.1

containers-common: before 1-82.0.1

containernetworking-plugins: before 1.4.0-5.0.1

udica: before 0.2.6-21

container-selinux: before 2.229.0-2

cockpit-podman: before 84.1-1

toolbox-tests: before 0.0.99.5-2.0.1

toolbox: before 0.0.99.5-2.0.1

slirp4netns: before 1.2.3-1

python3-criu: before 3.18-5.0.1

oci-seccomp-bpf-hook: before 1.2.10-1

netavark: before 1.10.3-1.0.1

libslirp-devel: before 4.4.0-2

libslirp: before 4.4.0-2

fuse-overlayfs: before 1.13-1.0.1

crun: before 1.14.3-2

criu-libs: before 3.18-5.0.1

criu-devel: before 3.18-5.0.1

criu: before 3.18-5.0.1

crit: before 3.18-5.0.1

conmon: before 2.1.10-1

aardvark-dns: before 1.10.0-2.0.1

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0838


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Memory leak

EUVDB-ID: #VU87830

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-1394

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform DoS attack on the target system.

The vulnerability exists due memory leak in the RSA encrypting/decrypting code when handling untrusted input. A remote attacker can pass specially crafted data to the application and perform denial of service attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

podman-docker: before 4.9.4-12.0.1

runc: before 1.1.12-4.0.1

podman-tests: before 4.9.4-12.0.1

podman-remote: before 4.9.4-12.0.1

podman-plugins: before 4.9.4-12.0.1

podman-gvproxy: before 4.9.4-12.0.1

podman-catatonit: before 4.9.4-12.0.1

podman: before 4.9.4-12.0.1

buildah-tests: before 1.34.0-1

buildah: before 1.34.0-1

python3-podman: before 4.9.0-2

skopeo-tests: before 1.14.5-3.0.1

skopeo: before 1.14.5-3.0.1

containers-common: before 1-82.0.1

containernetworking-plugins: before 1.4.0-5.0.1

udica: before 0.2.6-21

container-selinux: before 2.229.0-2

cockpit-podman: before 84.1-1

toolbox-tests: before 0.0.99.5-2.0.1

toolbox: before 0.0.99.5-2.0.1

slirp4netns: before 1.2.3-1

python3-criu: before 3.18-5.0.1

oci-seccomp-bpf-hook: before 1.2.10-1

netavark: before 1.10.3-1.0.1

libslirp-devel: before 4.4.0-2

libslirp: before 4.4.0-2

fuse-overlayfs: before 1.13-1.0.1

crun: before 1.14.3-2

criu-libs: before 3.18-5.0.1

criu-devel: before 3.18-5.0.1

criu: before 3.18-5.0.1

crit: before 3.18-5.0.1

conmon: before 2.1.10-1

aardvark-dns: before 1.10.0-2.0.1

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0838


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Error Handling

EUVDB-ID: #VU87196

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-24783

CWE-ID: CWE-388 - Error Handling

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists in crypto/x509 due to improper validation of a certificate chain that contains an unknown public key. A remote attacker can pass a specially crafted certificate to the application and perform a denial of service attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

podman-docker: before 4.9.4-12.0.1

runc: before 1.1.12-4.0.1

podman-tests: before 4.9.4-12.0.1

podman-remote: before 4.9.4-12.0.1

podman-plugins: before 4.9.4-12.0.1

podman-gvproxy: before 4.9.4-12.0.1

podman-catatonit: before 4.9.4-12.0.1

podman: before 4.9.4-12.0.1

buildah-tests: before 1.34.0-1

buildah: before 1.34.0-1

python3-podman: before 4.9.0-2

skopeo-tests: before 1.14.5-3.0.1

skopeo: before 1.14.5-3.0.1

containers-common: before 1-82.0.1

containernetworking-plugins: before 1.4.0-5.0.1

udica: before 0.2.6-21

container-selinux: before 2.229.0-2

cockpit-podman: before 84.1-1

toolbox-tests: before 0.0.99.5-2.0.1

toolbox: before 0.0.99.5-2.0.1

slirp4netns: before 1.2.3-1

python3-criu: before 3.18-5.0.1

oci-seccomp-bpf-hook: before 1.2.10-1

netavark: before 1.10.3-1.0.1

libslirp-devel: before 4.4.0-2

libslirp: before 4.4.0-2

fuse-overlayfs: before 1.13-1.0.1

crun: before 1.14.3-2

criu-libs: before 3.18-5.0.1

criu-devel: before 3.18-5.0.1

criu: before 3.18-5.0.1

crit: before 3.18-5.0.1

conmon: before 2.1.10-1

aardvark-dns: before 1.10.0-2.0.1

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0838


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Input validation error

EUVDB-ID: #VU87201

Risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-24784

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to insufficient validation of display names within the ParseAddressList function in net/mail. A remote attacker can pass specially crafted input to the application and perform a spoofing attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

podman-docker: before 4.9.4-12.0.1

runc: before 1.1.12-4.0.1

podman-tests: before 4.9.4-12.0.1

podman-remote: before 4.9.4-12.0.1

podman-plugins: before 4.9.4-12.0.1

podman-gvproxy: before 4.9.4-12.0.1

podman-catatonit: before 4.9.4-12.0.1

podman: before 4.9.4-12.0.1

buildah-tests: before 1.34.0-1

buildah: before 1.34.0-1

python3-podman: before 4.9.0-2

skopeo-tests: before 1.14.5-3.0.1

skopeo: before 1.14.5-3.0.1

containers-common: before 1-82.0.1

containernetworking-plugins: before 1.4.0-5.0.1

udica: before 0.2.6-21

container-selinux: before 2.229.0-2

cockpit-podman: before 84.1-1

toolbox-tests: before 0.0.99.5-2.0.1

toolbox: before 0.0.99.5-2.0.1

slirp4netns: before 1.2.3-1

python3-criu: before 3.18-5.0.1

oci-seccomp-bpf-hook: before 1.2.10-1

netavark: before 1.10.3-1.0.1

libslirp-devel: before 4.4.0-2

libslirp: before 4.4.0-2

fuse-overlayfs: before 1.13-1.0.1

crun: before 1.14.3-2

criu-libs: before 3.18-5.0.1

criu-devel: before 3.18-5.0.1

criu: before 3.18-5.0.1

crit: before 3.18-5.0.1

conmon: before 2.1.10-1

aardvark-dns: before 1.10.0-2.0.1

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0838


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Input validation error

EUVDB-ID: #VU91159

Risk: Low

CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-24789

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to manipulate data.

The vulnerability exists due to insufficient validation of user-supplied input in archive/zip when handling zip archives. A remote attacker can create a zip file with content that will vary depending on the implementation reading the file.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

podman-docker: before 4.9.4-12.0.1

runc: before 1.1.12-4.0.1

podman-tests: before 4.9.4-12.0.1

podman-remote: before 4.9.4-12.0.1

podman-plugins: before 4.9.4-12.0.1

podman-gvproxy: before 4.9.4-12.0.1

podman-catatonit: before 4.9.4-12.0.1

podman: before 4.9.4-12.0.1

buildah-tests: before 1.34.0-1

buildah: before 1.34.0-1

python3-podman: before 4.9.0-2

skopeo-tests: before 1.14.5-3.0.1

skopeo: before 1.14.5-3.0.1

containers-common: before 1-82.0.1

containernetworking-plugins: before 1.4.0-5.0.1

udica: before 0.2.6-21

container-selinux: before 2.229.0-2

cockpit-podman: before 84.1-1

toolbox-tests: before 0.0.99.5-2.0.1

toolbox: before 0.0.99.5-2.0.1

slirp4netns: before 1.2.3-1

python3-criu: before 3.18-5.0.1

oci-seccomp-bpf-hook: before 1.2.10-1

netavark: before 1.10.3-1.0.1

libslirp-devel: before 4.4.0-2

libslirp: before 4.4.0-2

fuse-overlayfs: before 1.13-1.0.1

crun: before 1.14.3-2

criu-libs: before 3.18-5.0.1

criu-devel: before 3.18-5.0.1

criu: before 3.18-5.0.1

crit: before 3.18-5.0.1

conmon: before 2.1.10-1

aardvark-dns: before 1.10.0-2.0.1

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0838


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Improper validation of integrity check value

EUVDB-ID: #VU89685

Risk: Medium

CVSSv4.0: 4.8 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-3727

CWE-ID: CWE-354 - Improper Validation of Integrity Check Value

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to improper validation of integrity check. A remote attacker can trick the victim into providing authenticated registry accesses, causing resource exhaustion, local path traversal, and other attacks.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

podman-docker: before 4.9.4-12.0.1

runc: before 1.1.12-4.0.1

podman-tests: before 4.9.4-12.0.1

podman-remote: before 4.9.4-12.0.1

podman-plugins: before 4.9.4-12.0.1

podman-gvproxy: before 4.9.4-12.0.1

podman-catatonit: before 4.9.4-12.0.1

podman: before 4.9.4-12.0.1

buildah-tests: before 1.34.0-1

buildah: before 1.34.0-1

python3-podman: before 4.9.0-2

skopeo-tests: before 1.14.5-3.0.1

skopeo: before 1.14.5-3.0.1

containers-common: before 1-82.0.1

containernetworking-plugins: before 1.4.0-5.0.1

udica: before 0.2.6-21

container-selinux: before 2.229.0-2

cockpit-podman: before 84.1-1

toolbox-tests: before 0.0.99.5-2.0.1

toolbox: before 0.0.99.5-2.0.1

slirp4netns: before 1.2.3-1

python3-criu: before 3.18-5.0.1

oci-seccomp-bpf-hook: before 1.2.10-1

netavark: before 1.10.3-1.0.1

libslirp-devel: before 4.4.0-2

libslirp: before 4.4.0-2

fuse-overlayfs: before 1.13-1.0.1

crun: before 1.14.3-2

criu-libs: before 3.18-5.0.1

criu-devel: before 3.18-5.0.1

criu: before 3.18-5.0.1

crit: before 3.18-5.0.1

conmon: before 2.1.10-1

aardvark-dns: before 1.10.0-2.0.1

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0838


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Resource exhaustion

EUVDB-ID: #VU94743

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-37298

CWE-ID: CWE-400 - Resource exhaustion

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to application does not properly control consumption of internal resources in schema.Decoder.Decode() . A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

podman-docker: before 4.9.4-12.0.1

runc: before 1.1.12-4.0.1

podman-tests: before 4.9.4-12.0.1

podman-remote: before 4.9.4-12.0.1

podman-plugins: before 4.9.4-12.0.1

podman-gvproxy: before 4.9.4-12.0.1

podman-catatonit: before 4.9.4-12.0.1

podman: before 4.9.4-12.0.1

buildah-tests: before 1.34.0-1

buildah: before 1.34.0-1

python3-podman: before 4.9.0-2

skopeo-tests: before 1.14.5-3.0.1

skopeo: before 1.14.5-3.0.1

containers-common: before 1-82.0.1

containernetworking-plugins: before 1.4.0-5.0.1

udica: before 0.2.6-21

container-selinux: before 2.229.0-2

cockpit-podman: before 84.1-1

toolbox-tests: before 0.0.99.5-2.0.1

toolbox: before 0.0.99.5-2.0.1

slirp4netns: before 1.2.3-1

python3-criu: before 3.18-5.0.1

oci-seccomp-bpf-hook: before 1.2.10-1

netavark: before 1.10.3-1.0.1

libslirp-devel: before 4.4.0-2

libslirp: before 4.4.0-2

fuse-overlayfs: before 1.13-1.0.1

crun: before 1.14.3-2

criu-libs: before 3.18-5.0.1

criu-devel: before 3.18-5.0.1

criu: before 3.18-5.0.1

crit: before 3.18-5.0.1

conmon: before 2.1.10-1

aardvark-dns: before 1.10.0-2.0.1

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0838


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Inclusion of Sensitive Information in Log Files

EUVDB-ID: #VU94616

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-6104

CWE-ID: CWE-532 - Information Exposure Through Log Files

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to software stores sensitive information into log files. A local user can read the log files and gain access to sensitive data obtain from HTTP requests.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

podman-docker: before 4.9.4-12.0.1

runc: before 1.1.12-4.0.1

podman-tests: before 4.9.4-12.0.1

podman-remote: before 4.9.4-12.0.1

podman-plugins: before 4.9.4-12.0.1

podman-gvproxy: before 4.9.4-12.0.1

podman-catatonit: before 4.9.4-12.0.1

podman: before 4.9.4-12.0.1

buildah-tests: before 1.34.0-1

buildah: before 1.34.0-1

python3-podman: before 4.9.0-2

skopeo-tests: before 1.14.5-3.0.1

skopeo: before 1.14.5-3.0.1

containers-common: before 1-82.0.1

containernetworking-plugins: before 1.4.0-5.0.1

udica: before 0.2.6-21

container-selinux: before 2.229.0-2

cockpit-podman: before 84.1-1

toolbox-tests: before 0.0.99.5-2.0.1

toolbox: before 0.0.99.5-2.0.1

slirp4netns: before 1.2.3-1

python3-criu: before 3.18-5.0.1

oci-seccomp-bpf-hook: before 1.2.10-1

netavark: before 1.10.3-1.0.1

libslirp-devel: before 4.4.0-2

libslirp: before 4.4.0-2

fuse-overlayfs: before 1.13-1.0.1

crun: before 1.14.3-2

criu-libs: before 3.18-5.0.1

criu-devel: before 3.18-5.0.1

criu: before 3.18-5.0.1

crit: before 3.18-5.0.1

conmon: before 2.1.10-1

aardvark-dns: before 1.10.0-2.0.1

CPE2.3 External links

https://anas.openanolis.cn/errata/detail/ANSA-2024:0838


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###