podman: fix CVE-2025-6032 - linux/meta-virtualization.git - Mirror of git.yoctoproject.org/meta-virtualization

diff options

author	Praveen Kumar <praveen.kumar@windriver.com>	2025-07-08 14:56:10 +0530
committer	Bruce Ashfield <bruce.ashfield@gmail.com>	2025-07-08 13:44:03 -0400
commit	95caaaca9e7823713a8fd3ab43bc2f6464021ca3 (patch)
tree	b499247ef1ae3083e0d8a0c3e17e40f900d124ad /recipes-networking/openvswitch/files/python-switch-remaining-scripts-to-use-python3.patch
parent	d20e589758ac40a846a8cd22f3b646ef48d02647 (diff)
download	meta-virtualization-95caaaca9e7823713a8fd3ab43bc2f6464021ca3.tar.gz

podman: fix CVE-2025-6032

A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-6032 Upstream-patch: https://github.com/containers/podman/commit/1569c209829530b1f42e8c2fce851de8003ab3fe Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com> Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>

Diffstat (limited to 'recipes-networking/openvswitch/files/python-switch-remaining-scripts-to-use-python3.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: