skopeo-1.18.1-2.el9_6

エラータID: AXSA:2025-10550:03

リリース日: 
2025/07/22 Tuesday - 18:29
題名: 
skopeo-1.18.1-2.el9_6
影響のあるチャネル: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files.

Security Fix(es):

* net/[http:](http:) Request smuggling due to acceptance of invalid chunked data in net/http (CVE-2025-22871)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-22871
The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext.

解決策: 

Update packages.

CVE: 
CVE-2025-22871
The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext.
追加情報: 

N/A

ダウンロード: 

SRPMS
  1. skopeo-1.18.1-2.el9_6.src.rpm
    MD5: 88478fa1e851d34543168bba8336e0db
    SHA-256: 27d8c61d13fc5cebb983619e9c7de4063a178a1e690ef612d72c4ea297b4e354
    Size: 10.15 MB

Asianux Server 9 for x86_64
  1. skopeo-1.18.1-2.el9_6.x86_64.rpm
    MD5: 15a993c83f716bc851f8dfa9c360e6dc
    SHA-256: 10707350ea44843b57762f3f6f14f7d4b9f4afc6502e1ffa2f54a39428f17cdb
    Size: 9.09 MB
  2. skopeo-tests-1.18.1-2.el9_6.x86_64.rpm
    MD5: ee56158e61e87efb285ed4ca60e32539
    SHA-256: 9392f59ca6d11a46a06caa40abe0903d1e4c68a5cbb8d5d214f99b153e87dcbd
    Size: 766.12 kB