Hi,
In the last few days, a new CVE affecting Podman, CVE-2021-20291, was
made public. This vulnerability affects the containers/storage library
and can cause a denial of service if the user pulls a
specially-crafted image, causing most Podman commands to hang. The
Podman team does not feel that this is a serious vulnerability, as any
affected Podman image pull can be killed without adverse effect on
other Podman processes and running containers. However, we still
encourage all users to upgrade to the latest Podman release, Podman
v3.1.0, which resolves the issue.
Thanks,
Matt Heon
_______________________________________________
Podman mailing list -- podman@lists.podman.io
To unsubscribe send an email to podman-leave@lists.podman.io