CVE-2020-1702

A malicious container image can consume an unbounded amount of memory when being pulled to a container runtime host, such as Red Hat Enterprise Linux using podman, or OpenShift Container Platform. An attacker can use this flaw to trick a user, with privileges to pull container images, into crashing the process responsible for pulling the image. This flaw affects containers-image versions before 5.2.0.
References
Configurations

Configuration 1

cpe:2.3:a:containers-image_project:containers-image:*:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*

Information

Published : 2021-05-27 08:15

Updated : 2021-06-10 03:16


NVD link : CVE-2020-1702

Mitre link : CVE-2020-1702

Products Affected
No products.
CWE