skopeo vulnerabilities

Known vulnerabilities in the skopeo package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
M Directory Traversal	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
M Information Exposure	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
M CVE-2021-33198	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H Directory Traversal	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H Improper Input Validation	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H Link Following	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H CVE-2024-34158	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H CVE-2024-34156	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H CVE-2024-34155	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H Information Exposure Through Log Files	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H CVE-2024-37298	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H Improper Validation of Integrity Check Value	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H CVE-2024-24789	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H CVE-2024-24784	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H CVE-2024-24783	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H Memory Leak	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
H CVE-2023-45290	<2:1.14.5-3.module+el8.10.0+1843+6892ab28
M CVE-2024-28176	<2:1.14.3-2.module+el8.10.0+1815+5fe7415e
M CVE-2024-28180	<2:1.14.3-2.module+el8.10.0+1815+5fe7415e
H CVE-2024-24786	<2:1.14.3-2.module+el8.10.0+1815+5fe7415e
H CVE-2022-41715	<2:1.14.3-2.module+el8.10.0+1815+5fe7415e
H HTTP Request Smuggling	<2:1.14.3-2.module+el8.10.0+1815+5fe7415e
H Link Following	<2:1.14.3-2.module+el8.10.0+1815+5fe7415e
H Exposure of Resource to Wrong Sphere	<2:1.13.3-3.module+el8.9.0+1703+29de406e
M Interpretation Conflict	<2:1.6.2-9.module+el8.9.0+1578+aa900b44
H Allocation of Resources Without Limits or Throttling	<1:0.1.32-6.git1715c90.module+el8.4.0+557+48ba8b2f
H Resource Exhaustion	<1:0.1.32-6.git1715c90.module+el8.4.0+557+48ba8b2f
H Out-of-bounds Write	<1:0.1.32-6.git1715c90.module+el8.4.0+557+48ba8b2f
M Origin Validation Error	<1:1.2.2-8.module+el8.5.0+661+c0df01f6
M NULL Pointer Dereference	<1:1.2.2-8.module+el8.5.0+661+c0df01f6
H Incorrect Authorization	<1:0.1.41-4.module+el8.5.0+708+6758137d
H Race Condition	<1:0.1.41-4.module+el8.5.0+708+6758137d
M Improper Locking	<1:1.4.2-0.1.module+el8.5.0+710+4c471e88
M Incorrect Default Permissions	<1:1.2.4-1.module+el8.6.0+783+10209741
H Incorrect Default Permissions	<2:1.6.1-2.module+el8.6.0+784+32aef5de
M Incorrect Default Permissions	<1:1.2.4-1.module+el8.6.0+783+10209741
H Allocation of Resources Without Limits or Throttling	<2:1.6.1-2.module+el8.6.0+784+32aef5de
H Improper Privilege Management	<2:1.6.1-2.module+el8.6.0+784+32aef5de
M Improper Cross-boundary Removal of Sensitive Data	<1:0.1.41-4.module+el8.5.0+708+6758137d
M CVE-2022-32148	<1:1.2.4-2.module+el8.7.0+1076+9b1c11c1
M Uncontrolled Recursion	<1:1.2.4-2.module+el8.7.0+1076+9b1c11c1
M Uncontrolled Recursion	<1:1.2.4-2.module+el8.7.0+1076+9b1c11c1
M Uncontrolled Recursion	<1:1.2.4-2.module+el8.7.0+1076+9b1c11c1
M Uncontrolled Recursion	<1:1.2.4-2.module+el8.7.0+1076+9b1c11c1
M Uncontrolled Recursion	<1:1.2.4-2.module+el8.7.0+1076+9b1c11c1
M Uncontrolled Recursion	<1:1.2.4-2.module+el8.7.0+1076+9b1c11c1
M HTTP Request Smuggling	<1:1.2.4-2.module+el8.7.0+1076+9b1c11c1
L Placement of User into Incorrect Group	<2:1.9.3-1.module+el8.7.0+1078+e72fcd4f
L Placement of User into Incorrect Group	<2:1.9.3-1.module+el8.7.0+1078+e72fcd4f
M Incorrect Default Permissions	<2:1.6.2-5.module+el8.7.0+1077+0e4f03d4
M CVE-2022-27191	<2:1.6.2-5.module+el8.7.0+1077+0e4f03d4
M Allocation of Resources Without Limits or Throttling	<2:1.6.2-5.module+el8.7.0+1077+0e4f03d4

Vulnerability

Vulnerable Version

Directory Traversal