43 lines
1.8 KiB
Plaintext
43 lines
1.8 KiB
Plaintext
<patchinfo incident="46">
|
|
<!-- generated from request(s) 343328 -->
|
|
<issue tracker="bnc" id="1227052">VUL-0: CVE-2024-6104: podman: hashicorp/go-retryablehttp: url might write sensitive information to log file</issue>
|
|
<issue tracker="cve" id="2024-1753"/>
|
|
<issue tracker="cve" id="2024-3727"/>
|
|
<issue tracker="cve" id="2024-6104"/>
|
|
<issue tracker="cve" id="2024-24786"/>
|
|
<packager>danishprakash</packager>
|
|
<rating>moderate</rating>
|
|
<category>security</category>
|
|
<summary>Security update for podman</summary>
|
|
<description>This update for podman fixes the following issues:
|
|
|
|
- CVE-2024-6104: Fixed dependency issue with go-retryablehttp: url might write sensitive information to log file (bsc#1227052).
|
|
|
|
- Update to version 4.9.5:
|
|
* Bump to v4.9.5
|
|
* Update release notes for v4.9.5
|
|
* fix "concurrent map writes" in network ls compat endpoint
|
|
* [v4.9] Fix for CVE-2024-3727
|
|
* Disable failing bud test
|
|
* CI Maintenance: Disable machine tests
|
|
* [CI:DOCS] Allow downgrade of WiX
|
|
* [CI:DOCS] Force WiX 3.11
|
|
* [CI:DOCS] Fix windows installer action
|
|
* Bump to v4.9.5-dev
|
|
* Bump to v4.9.4
|
|
* Update release notes for v4.9.4
|
|
* [v4.9] Bump Buildah to v1.33.7, CVE-2024-1753, CVE-2024-24786
|
|
* Add farm command to commands list
|
|
* Bump to FreeBSD 13.3 (13.2 vanished)
|
|
* Update health-start-periods docs
|
|
* Don't update health check status during initialDelaySeconds
|
|
* image scp: don't require port for ssh URL
|
|
* Ignore docker's end point config when the final network mode isn't bridge.
|
|
* Fix running container from docker client with rootful in rootless podman.
|
|
* [skip-ci] Packit: remove koji and bodhi tasks for v4.9
|
|
* Bump to v4.9.4-dev
|
|
* Remove gitleaks scanning
|
|
</description>
|
|
<package>podman</package>
|
|
<seperate_build_arch/>
|
|
</patchinfo> |