Issued at: 2024-06-14
Updated at: 2024-06-14
Synopsis
Moderate: gvisor-tap-vsock security and bug fix update
Description
A replacement for libslirp and VPNKit, written in pure Go. It is based on the network stack of gVisor and is used to provide networking for podman-machine virtual machines. Compared to libslirp, gvisor-tap-vsock brings a configurable DNS server and dynamic port forwarding.
Security Fix(es):
* golang: net/http: memory exhaustion in Request.ParseMultipartForm (CVE-2023-45290)
Affected products
Rocky Linux 9 aarch64
Rocky Linux 9 ppc64le
Rocky Linux 9 s390x
Rocky Linux 9 x86_64
Fixes
2268017
CVEs
CVE-2023-45290
Affected packages
Rocky Linux 9 aarch64 - AppStream
gvisor-tap-vsock-6:0.7.3-3.el9_4.aarch64.rpm
gvisor-tap-vsock-6:0.7.3-3.el9_4.src.rpm
gvisor-tap-vsock-debuginfo-6:0.7.3-3.el9_4.aarch64.rpm
gvisor-tap-vsock-debugsource-6:0.7.3-3.el9_4.aarch64.rpm
Rocky Linux 9 ppc64le - AppStream
gvisor-tap-vsock-6:0.7.3-3.el9_4.ppc64le.rpm
gvisor-tap-vsock-6:0.7.3-3.el9_4.src.rpm
gvisor-tap-vsock-debuginfo-6:0.7.3-3.el9_4.ppc64le.rpm
gvisor-tap-vsock-debugsource-6:0.7.3-3.el9_4.ppc64le.rpm
Rocky Linux 9 s390x - AppStream
gvisor-tap-vsock-6:0.7.3-3.el9_4.s390x.rpm
gvisor-tap-vsock-6:0.7.3-3.el9_4.src.rpm
gvisor-tap-vsock-debuginfo-6:0.7.3-3.el9_4.s390x.rpm
gvisor-tap-vsock-debugsource-6:0.7.3-3.el9_4.s390x.rpm
Rocky Linux 9 x86_64 - AppStream
gvisor-tap-vsock-6:0.7.3-3.el9_4.src.rpm
gvisor-tap-vsock-6:0.7.3-3.el9_4.x86_64.rpm
gvisor-tap-vsock-debuginfo-6:0.7.3-3.el9_4.x86_64.rpm
gvisor-tap-vsock-debugsource-6:0.7.3-3.el9_4.x86_64.rpm