Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-11762

CVE-2020-8945 container-tools:rhel8/skopeo: proglottis/gpgme: Use-after-free in GPGME bindings during container image pull [rhel-8]

    • None
    • Moderate
    • rhel-sst-container-tools
    • 2
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • Automated
    • Release Note Not Required
    • None

      rhel-8 tracking bug for container-tools:rhel8/skopeo: see the bugs linked in the "Blocks" field of this bug for full details of the security issue(s).

      This bug is never intended to be made public, please put any public notes in the blocked bugs.

      Impact: Moderate
      Public Date: 16-Jan-2020
      PM Fix/Wontfix Decision By: 25-May-2020
      Resolve Bug By: 15-Jan-2021

      In case the dates above are already past, please evaluate this bug in your next prioritization review and make a decision then. Remember to explicitly set CLOSED:WONTFIX if you decide not to fix this bug.

      Please see the Security Errata Policy for further details: https://docs.engineering.redhat.com/x/9RBqB

      For the Enterprise Linux security issues handling process overview see: https://mojo.redhat.com/docs/DOC-1003504

              rhn-support-jnovy Jindrich Novy
              rhn-support-rschiron Riccardo Schirone (Inactive)
              Jindrich Novy Jindrich Novy
              Container QE Container QE Container QE Container QE
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: