Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-11737

CVE-2020-8945 container-tools:rhel8/podman: proglottis/gpgme: Use-after-free in GPGME bindings during container image pull [rhel-8]

    XMLWordPrintable

Details

    • Normal
    • sst_container_tools
    • 3
    • False
    • Hide

      None

      Show
      None
    • Release Note Not Required

    Description

      rhel-8 tracking bug for container-tools:rhel8/podman: see the bugs linked in the "Blocks" field of this bug for full details of the security issue(s).

      This bug is never intended to be made public, please put any public notes in the blocked bugs.

      Impact: Moderate
      Public Date: 16-Jan-2020
      PM Fix/Wontfix Decision By: 25-May-2020
      Resolve Bug By: 15-Jan-2021

      In case the dates above are already past, please evaluate this bug in your next prioritization review and make a decision then. Remember to explicitly set CLOSED:WONTFIX if you decide not to fix this bug.

      Please see the Security Errata Policy for further details: https://docs.engineering.redhat.com/x/9RBqB

      For the Enterprise Linux security issues handling process overview see: https://mojo.redhat.com/docs/DOC-1003504

      Attachments

        Activity

          People

            tsweeney@redhat.com Tom Sweeney
            rhn-support-rschiron Riccardo Schirone (Inactive)
            Jindrich Novy Jindrich Novy
            Container QE Container QE Container QE Container QE
            Votes:
            0 Vote for this issue
            Watchers:
            10 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: