SB2020040149 - Red Hat Enterprise Linux 7 Extras update for podman

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2020040149

SB2020040149 - Red Hat Enterprise Linux 7 Extras update for podman

Published: April 1, 2020

Security Bulletin ID SB2020040149
Severity
Medium
Patch available
YES
Number of vulnerabilities 2
Exploitation vector Remote access
Highest impact Denial of service

Breakdown by Severity

Medium 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.


1) Resource exhaustion (CVE-ID: CVE-2020-1702)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to application reads the entire image manifest file into memory. A remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack by supplying a huge manifest file.


2) UNIX symbolic link following (CVE-ID: CVE-2019-18466)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a symlink following issue in libpod (podman) in the host context during a copy operation from the container to the host, because an undesired glob operation occurs. An attacker could create a container image containing particular symlinks that, when copied by a victim user to the host filesystem, may overwrite existing files with others from the host.

Successful exploitation of this vulnerability may result in privilege escalation on the host operating system.


Remediation

Install update from vendor's website.

References