Test ID:	1.3.6.1.4.1.25623.1.0.886332
Category:	Fedora Local Security Checks
Title:	Fedora: Security Advisory (FEDORA-2024-a267e93f8c)
Summary:	The remote host is missing an update for the 'containers-common, netavark, podman' package(s) announced via the FEDORA-2024-a267e93f8c advisory.
Description:	Summary: The remote host is missing an update for the 'containers-common, netavark, podman' package(s) announced via the FEDORA-2024-a267e93f8c advisory. Vulnerability Insight: Security fix for CVE-2024-1753 Automatic update for podman-5.0.0-1.fc40. ##### **Changelog for podman** ``` * Tue Mar 19 2024 Packit - 5:5.0.0-1 - [packit] 5.0.0 upstream release * Fri Mar 15 2024 Packit - 5:5.0.0~ rc7-1 - [packit] 5.0.0-rc7 upstream release * Wed Mar 13 2024 Lokesh Mandvekar - 5:5.0.0~ rc6-2 - Resolves: #2269148 - make passt a hard dep * Mon Mar 11 2024 Packit - 5:5.0.0~ rc6-1 - [packit] 5.0.0-rc6 upstream release * Fri Mar 08 2024 Packit - 5:5.0.0~ rc5-1 - [packit] 5.0.0-rc5 upstream release * Tue Mar 05 2024 Packit - 5:5.0.0~ rc4-1 - [packit] 5.0.0-rc4 upstream release * Fri Mar 01 2024 Debarshi Ray - 5:5.0.0~ rc3-5 - Show the toolbox RPMs used to run the tests * Fri Mar 01 2024 Debarshi Ray - 5:5.0.0~ rc3-4 - Avoid running out of storage space when running the Toolbx tests * Fri Mar 01 2024 Debarshi Ray - 5:5.0.0~ rc3-3 - Silence warnings about deprecated grep(1) use in test logs * Fri Mar 01 2024 Debarshi Ray - 5:5.0.0~ rc3-2 - Update how Toolbx is spelt * Thu Feb 22 2024 Packit - 5:5.0.0~ rc3-1 - [packit] 5.0.0-rc3 upstream release ``` ---- Automatic update for podman-5.0.0~ rc7-1.fc40. ##### **Changelog for podman** ``` * Fri Mar 15 2024 Packit - 5:5.0.0~ rc7-1 - [packit] 5.0.0-rc7 upstream release * Wed Mar 13 2024 Lokesh Mandvekar - 5:5.0.0~ rc6-2 - Resolves: #2269148 - make passt a hard dep * Mon Mar 11 2024 Packit - 5:5.0.0~ rc6-1 - [packit] 5.0.0-rc6 upstream release * Fri Mar 08 2024 Packit - 5:5.0.0~ rc5-1 - [packit] 5.0.0-rc5 upstream release * Tue Mar 05 2024 Packit - 5:5.0.0~ rc4-1 - [packit] 5.0.0-rc4 upstream release * Fri Mar 01 2024 Debarshi Ray - 5:5.0.0~ rc3-5 - Show the toolbox RPMs used to run the tests * Fri Mar 01 2024 Debarshi Ray - 5:5.0.0~ rc3-4 - Avoid running out of storage space when running the Toolbx tests * Fri Mar 01 2024 Debarshi Ray - 5:5.0.0~ rc3-3 - Silence warnings about deprecated grep(1) use in test logs * Fri Mar 01 2024 Debarshi Ray - 5:5.0.0~ rc3-2 - Update how Toolbx is spelt * Thu Feb 22 2024 Packit - 5:5.0.0~ rc3-1 - [packit] 5.0.0-rc3 upstream release ``` ---- make passt and netavark hard dependencies for podman ---- Automatic update for podman-5.0.0~ rc6-1.fc40. ##### **Changelog for podman** ``` * Mon Mar 11 2024 Packit - 5:5.0.0~ rc6-1 - [packit] 5.0.0-rc6 upstream release * Fri Mar 08 2024 Packit - 5:5.0.0~ rc5-1 - [packit] 5.0.0-rc5 upstream release * Tue Mar 05 2024 Packit - ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'containers-common, netavark, podman' package(s) on Fedora 40. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2024-1753 RHBZ#2265513 https://bugzilla.redhat.com/show_bug.cgi?id=2265513 RHSA-2024:2049 https://access.redhat.com/errata/RHSA-2024:2049 RHSA-2024:2055 https://access.redhat.com/errata/RHSA-2024:2055 RHSA-2024:2064 https://access.redhat.com/errata/RHSA-2024:2064 RHSA-2024:2066 https://access.redhat.com/errata/RHSA-2024:2066 RHSA-2024:2077 https://access.redhat.com/errata/RHSA-2024:2077 RHSA-2024:2084 https://access.redhat.com/errata/RHSA-2024:2084 RHSA-2024:2089 https://access.redhat.com/errata/RHSA-2024:2089 RHSA-2024:2090 https://access.redhat.com/errata/RHSA-2024:2090 RHSA-2024:2097 https://access.redhat.com/errata/RHSA-2024:2097 RHSA-2024:2098 https://access.redhat.com/errata/RHSA-2024:2098 RHSA-2024:2548 https://access.redhat.com/errata/RHSA-2024:2548 RHSA-2024:2645 https://access.redhat.com/errata/RHSA-2024:2645 RHSA-2024:2669 https://access.redhat.com/errata/RHSA-2024:2669 RHSA-2024:2672 https://access.redhat.com/errata/RHSA-2024:2672 RHSA-2024:2784 https://access.redhat.com/errata/RHSA-2024:2784 RHSA-2024:2877 https://access.redhat.com/errata/RHSA-2024:2877 RHSA-2024:3254 https://access.redhat.com/errata/RHSA-2024:3254 https://access.redhat.com/security/cve/CVE-2024-1753 https://github.com/containers/buildah/security/advisories/GHSA-pmf3-c36m-g5cf https://github.com/containers/podman/security/advisories/GHSA-874v-pj72-92f3 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FCRZVUDOFM5CPREQKBEU2VK2QK62PSBP/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KOYMVMQ7RWMDTSKQTBO734BE3WQPI2AJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZVBSVZGVABPYIHK5HZM472NPGWMI7WXH/
Copyright	Copyright (C) 2024 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.