runc-1.1.13-4.el9
エラータID: AXSA:2024-9101:06
Release date:
Wednesday, December 11, 2024 - 18:13
Subject:
runc-1.1.13-4.el9
Affected Channels:
MIRACLE LINUX 9 for x86_64
Severity:
Moderate
Description:
The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides container runtime.
Security Fix(es):
* golang: net: malformed DNS message can cause infinite loop (CVE-2024-24788)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the MIRACLE LINUX 9.5 Release Notes linked from the References section.
CVE-2024-24788
A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop.
Solution:
Update packages.
CVEs:
CVE-2024-24788
A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop.
A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop.
Additional Info:
N/A
Download:
SRPMS
- runc-1.1.13-4.el9.src.rpm
MD5: ea85658115824d610e2edc5208868723
SHA-256: b80cdba9a4fe86d50bd5c0fb327084fcb3a1ae9b202cf0d4dc8f94470c26328e
Size: 2.39 MB
Asianux Server 9 for x86_64
- runc-1.1.13-4.el9.x86_64.rpm
MD5: c8bc24c29e7956241bd257434f0e66d8
SHA-256: 8df225e8fe0a266c94fdade3baa9388b45bcb0309f6e9e914f74362dee221e3b
Size: 3.17 MB
日本語