[ALSA-2024:4502] Important: skopeo security update
Type:
security
Severity:
important
Release date:
2024-07-17
Description:
The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files. Security Fix(es): * golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 skopeo-tests-1.14.3-3.el9_4.aarch64.rpm 36b3ec2e923d83d23395e6bacac68b6af088e621a709fa8bb1236e91a1e12899
aarch64 skopeo-1.14.3-3.el9_4.aarch64.rpm f7b5f81d9c08c1e5d5a956428e0ee8e5ab947005f829a7cf596b0c250fa4c702
ppc64le skopeo-1.14.3-3.el9_4.ppc64le.rpm 6b3748bc9df3c559f7eb5a9c508f282d2958538619d7d162f3d7fcc6ae98969a
ppc64le skopeo-tests-1.14.3-3.el9_4.ppc64le.rpm f1025f68b745ea3c17808f04bee06a916cbe89154989bd1a1ab6289f76da96c4
s390x skopeo-1.14.3-3.el9_4.s390x.rpm 3d0ddb6e3d5c15a7714c42335a9a1252cbcca39632fae45d692ad36d604388d9
s390x skopeo-tests-1.14.3-3.el9_4.s390x.rpm 538003afd922e49a01f080d73e8493c2661500d535d2a7f06a7931394d0c1956
x86_64 skopeo-1.14.3-3.el9_4.x86_64.rpm 5c878115959eaabae51aebd475d757e9dd51e5c411bbdd0e6d6b13cfb74289f4
x86_64 skopeo-tests-1.14.3-3.el9_4.x86_64.rpm b995998a60cbf18a50207864263fa66e99148fa534fe6b8c5c4e8bf6859b04b7
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.