{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2019-9946","title":"Title"},{"category":"description","text":"Cloud Native Computing Foundation (CNCF) CNI (Container Networking Interface) 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE- SERVICES chain. Because of this, the HostPort/portmap rule could match incoming traffic even if there were better fitting, more specific service definition rules like NodePorts later in the chain. The issue is fixed in CNI 0.7.5 and Kubernetes 1.11.9, 1.12.7, 1.13.5, and 1.14.0.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2019-9946","url":"https://www.suse.com/security/cve/CVE-2019-9946"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1131057 for CVE-2019-9946","url":"https://bugzilla.suse.com/1131057"}],"title":"SUSE CVE CVE-2019-9946","tracking":{"current_release_date":"2026-01-17T00:49:15Z","generator":{"date":"2023-02-15T04:13:54Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2019-9946","initial_release_date":"2023-02-15T04:13:54Z","revision_history":[{"date":"2023-02-15T04:13:54Z","number":"2","summary":"Current version"},{"date":"2025-01-01T06:39:15Z","number":"3","summary":"Current version"},{"date":"2025-02-15T07:20:43Z","number":"4","summary":"Current version"},{"date":"2025-02-17T07:46:21Z","number":"5","summary":"Current version"},{"date":"2025-03-14T03:27:36Z","number":"6","summary":"Current version"},{"date":"2025-03-15T10:52:50Z","number":"7","summary":"Current version"},{"date":"2025-04-25T06:20:44Z","number":"8","summary":"Current version"},{"date":"2025-10-07T09:34:21Z","number":"9","summary":"Current version"},{"date":"2026-01-17T00:49:15Z","number":"10","summary":"more updates released"}],"status":"interim","version":"10"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"Magnum Orchestration 7","product":{"name":"Magnum Orchestration 7","product_id":"Magnum Orchestration 7","product_identification_helper":{"cpe":"cpe:/o:suse:openstack-cloud-magnum-orchestration:7"}}},{"category":"product_name","name":"SUSE CaaS Platform 4.0","product":{"name":"SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0","product_identification_helper":{"cpe":"cpe:/o:suse:caasp:4.0"}}},{"category":"product_name","name":"SUSE Container as a Service Platform 2.0","product":{"name":"SUSE Container as a Service Platform 2.0","product_id":"SUSE Container as a Service Platform 2.0","product_identification_helper":{"cpe":"cpe:/o:suse:caasp:2.0"}}},{"category":"product_name","name":"SUSE Liberty Linux 8","product":{"name":"SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8","product_identification_helper":{"cpe":"cpe:/o:suse:sll:8"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 12","product":{"name":"SUSE Linux Enterprise High Performance Computing 12","product_id":"SUSE Linux Enterprise High Performance Computing 12","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc-espos:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Module for Public Cloud 12","product":{"name":"SUSE Linux Enterprise Module for Public Cloud 12","product_id":"SUSE Linux Enterprise Module for Public Cloud 12","product_identification_helper":{"cpe":"cpe:/o:suse:sle-module-public-cloud:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12","product":{"name":"SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12","product_identification_helper":{"cpe":"cpe:/o:suse:sles:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP3","product":{"name":"SUSE Linux Enterprise Server 12 SP3","product_id":"SUSE Linux Enterprise Server 12 SP3","product_identification_helper":{"cpe":"cpe:/o:suse:sles:12:sp3"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP4","product":{"name":"SUSE Linux Enterprise Server 12 SP4","product_id":"SUSE Linux Enterprise Server 12 SP4","product_identification_helper":{"cpe":"cpe:/o:suse:sles:12:sp4"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP5","product":{"name":"SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5","product_identification_helper":{"cpe":"cpe:/o:suse:sles:12:sp5"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product":{"name":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product_id":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sles_bcl:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12 SP3","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12:sp3"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12 SP4","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12:sp4"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12 SP5","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12:sp5"}}},{"category":"product_name","name":"openSUSE Tumbleweed","product":{"name":"openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed","product_identification_helper":{"cpe":"cpe:/o:opensuse:tumbleweed"}}},{"category":"product_version","name":"buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8","product":{"name":"buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8","product_id":"buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8","product_identification_helper":{"cpe":"cpe:2.3:a:buildah_project:buildah:1.9.0:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8@"}}},{"category":"product_version","name":"buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8","product":{"name":"buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8","product_id":"buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8","product_identification_helper":{"purl":"pkg:rpm/suse/buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8@"}}},{"category":"product_version","name":"cockpit-podman-4-1.module+el8.1.0+4081+b29780af","product":{"name":"cockpit-podman-4-1.module+el8.1.0+4081+b29780af","product_id":"cockpit-podman-4-1.module+el8.1.0+4081+b29780af","product_identification_helper":{"purl":"pkg:rpm/suse/cockpit-podman-4-1.module+el8.1.0+4081+b29780af@"}}},{"category":"product_version","name":"container-selinux-2.107-2.module+el8.1.0+4081+b29780af","product":{"name":"container-selinux-2.107-2.module+el8.1.0+4081+b29780af","product_id":"container-selinux-2.107-2.module+el8.1.0+4081+b29780af","product_identification_helper":{"purl":"pkg:rpm/suse/container-selinux-2.107-2.module+el8.1.0+4081+b29780af@"}}},{"category":"product_version","name":"containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af","product":{"name":"containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af","product_id":"containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af","product_identification_helper":{"purl":"pkg:rpm/suse/containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af@"}}},{"category":"product_version","name":"containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8","product":{"name":"containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8","product_id":"containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8","product_identification_helper":{"purl":"pkg:rpm/suse/containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8@"}}},{"category":"product_version","name":"fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af","product":{"name":"fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af","product_id":"fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af","product_identification_helper":{"purl":"pkg:rpm/suse/fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af@"}}},{"category":"product_version","name":"k3s-1.21.3+k3s1-1.2","product":{"name":"k3s-1.21.3+k3s1-1.2","product_id":"k3s-1.21.3+k3s1-1.2","product_identification_helper":{"purl":"pkg:rpm/suse/k3s@1.21.3+k3s1-1.2"}}},{"category":"product_version","name":"kubernetes","product":{"name":"kubernetes","product_id":"kubernetes","product_identification_helper":{"cpe":"cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/kubernetes@"}}},{"category":"product_version","name":"kubernetes-client","product":{"name":"kubernetes-client","product_id":"kubernetes-client","product_identification_helper":{"cpe":"cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/kubernetes-client@?upstream=kubernetes.src.rpm"}}},{"category":"product_version","name":"kubernetes-common","product":{"name":"kubernetes-common","product_id":"kubernetes-common","product_identification_helper":{"cpe":"cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/kubernetes-common@?upstream=kubernetes.src.rpm"}}},{"category":"product_version","name":"kubernetes-kubeadm","product":{"name":"kubernetes-kubeadm","product_id":"kubernetes-kubeadm","product_identification_helper":{"cpe":"cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/kubernetes-kubeadm@?upstream=kubernetes.src.rpm"}}},{"category":"product_version","name":"kubernetes-kubelet","product":{"name":"kubernetes-kubelet","product_id":"kubernetes-kubelet","product_identification_helper":{"cpe":"cpe:2.3:a:kubernetes:kubernetes:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/kubernetes-kubelet@?upstream=kubernetes.src.rpm"}}},{"category":"product_version","name":"oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af","product":{"name":"oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af","product_id":"oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af","product_identification_helper":{"purl":"pkg:rpm/suse/oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af@"}}},{"category":"product_version","name":"oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af","product":{"name":"oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af","product_id":"oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af","product_identification_helper":{"purl":"pkg:rpm/suse/oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af@"}}},{"category":"product_version","name":"podman-1.4.2-5.module+el8.1.0+4240+893c1ab8","product":{"name":"podman-1.4.2-5.module+el8.1.0+4240+893c1ab8","product_id":"podman-1.4.2-5.module+el8.1.0+4240+893c1ab8","product_identification_helper":{"cpe":"cpe:2.3:a:podman_project:podman:1.4.2:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/podman-1.4.2-5.module+el8.1.0+4240+893c1ab8@"}}},{"category":"product_version","name":"podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8","product":{"name":"podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8","product_id":"podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8","product_identification_helper":{"purl":"pkg:rpm/suse/podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8@"}}},{"category":"product_version","name":"podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8","product":{"name":"podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8","product_id":"podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8","product_identification_helper":{"purl":"pkg:rpm/suse/podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8@"}}},{"category":"product_version","name":"podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8","product":{"name":"podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8","product_id":"podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8","product_identification_helper":{"purl":"pkg:rpm/suse/podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8@"}}},{"category":"product_version","name":"podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8","product":{"name":"podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8","product_id":"podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8","product_identification_helper":{"purl":"pkg:rpm/suse/podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8@"}}},{"category":"product_version","name":"python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af","product":{"name":"python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af","product_id":"python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af","product_identification_helper":{"purl":"pkg:rpm/suse/python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af@"}}},{"category":"product_version","name":"runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af","product":{"name":"runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af","product_id":"runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af","product_identification_helper":{"cpe":"cpe:2.3:a:linuxfoundation:runc:1.0.0:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af@"}}},{"category":"product_version","name":"skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8","product":{"name":"skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8","product_id":"skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8","product_identification_helper":{"purl":"pkg:rpm/suse/skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8@"}}},{"category":"product_version","name":"skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8","product":{"name":"skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8","product_id":"skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8","product_identification_helper":{"purl":"pkg:rpm/suse/skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8@"}}},{"category":"product_version","name":"slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805","product":{"name":"slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805","product_id":"slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805","product_identification_helper":{"cpe":"cpe:2.3:a:libslirp_project:libslirp:0.3.0:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805@"}}},{"category":"product_version","name":"toolbox-0.0.4-1.module+el8.1.0+4081+b29780af","product":{"name":"toolbox-0.0.4-1.module+el8.1.0+4081+b29780af","product_id":"toolbox-0.0.4-1.module+el8.1.0+4081+b29780af","product_identification_helper":{"purl":"pkg:rpm/suse/toolbox-0.0.4-1.module+el8.1.0+4081+b29780af@"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8"},"product_reference":"buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8"},"product_reference":"buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"cockpit-podman-4-1.module+el8.1.0+4081+b29780af as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:cockpit-podman-4-1.module+el8.1.0+4081+b29780af"},"product_reference":"cockpit-podman-4-1.module+el8.1.0+4081+b29780af","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"container-selinux-2.107-2.module+el8.1.0+4081+b29780af as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:container-selinux-2.107-2.module+el8.1.0+4081+b29780af"},"product_reference":"container-selinux-2.107-2.module+el8.1.0+4081+b29780af","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af"},"product_reference":"containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8"},"product_reference":"containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af"},"product_reference":"fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af"},"product_reference":"oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af"},"product_reference":"oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"podman-1.4.2-5.module+el8.1.0+4240+893c1ab8 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:podman-1.4.2-5.module+el8.1.0+4240+893c1ab8"},"product_reference":"podman-1.4.2-5.module+el8.1.0+4240+893c1ab8","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8"},"product_reference":"podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8"},"product_reference":"podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8"},"product_reference":"podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8"},"product_reference":"podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af"},"product_reference":"python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af"},"product_reference":"runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8"},"product_reference":"skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8"},"product_reference":"skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805"},"product_reference":"slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"toolbox-0.0.4-1.module+el8.1.0+4081+b29780af as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:toolbox-0.0.4-1.module+el8.1.0+4081+b29780af"},"product_reference":"toolbox-0.0.4-1.module+el8.1.0+4081+b29780af","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"k3s-1.21.3+k3s1-1.2 as component of openSUSE Tumbleweed","product_id":"openSUSE Tumbleweed:k3s-1.21.3+k3s1-1.2"},"product_reference":"k3s-1.21.3+k3s1-1.2","relates_to_product_reference":"openSUSE Tumbleweed"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of Magnum Orchestration 7","product_id":"Magnum Orchestration 7:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"Magnum Orchestration 7"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-common as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:kubernetes-common"},"product_reference":"kubernetes-common","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-kubeadm as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:kubernetes-kubeadm"},"product_reference":"kubernetes-kubeadm","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-kubelet as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:kubernetes-kubelet"},"product_reference":"kubernetes-kubelet","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Container as a Service Platform 2.0","product_id":"SUSE Container as a Service Platform 2.0:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Container as a Service Platform 2.0"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-common as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:kubernetes-common"},"product_reference":"kubernetes-common","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise Server 12","product_id":"SUSE Linux Enterprise Server 12:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise Server 12"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise Server for SAP Applications 12","product_id":"SUSE Linux Enterprise Server for SAP Applications 12:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise High Performance Computing 12","product_id":"SUSE Linux Enterprise High Performance Computing 12:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 12"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise High Performance Computing 12","product_id":"SUSE Linux Enterprise High Performance Computing 12:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 12"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise Server 12 SP3","product_id":"SUSE Linux Enterprise Server 12 SP3:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP3"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise Server 12 SP3","product_id":"SUSE Linux Enterprise Server 12 SP3:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP3"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP3"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP3:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP3"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise Server 12 SP4","product_id":"SUSE Linux Enterprise Server 12 SP4:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise Server 12 SP4","product_id":"SUSE Linux Enterprise Server 12 SP4:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP4"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP4:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP4"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP4:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP4"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"kubernetes-client as component of SUSE Linux Enterprise Module for Public Cloud 12","product_id":"SUSE Linux Enterprise Module for Public Cloud 12:kubernetes-client"},"product_reference":"kubernetes-client","relates_to_product_reference":"SUSE Linux Enterprise Module for Public Cloud 12"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise Module for Public Cloud 12","product_id":"SUSE Linux Enterprise Module for Public Cloud 12:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise Module for Public Cloud 12"},{"category":"default_component_of","full_product_name":{"name":"kubernetes as component of SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product_id":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1:kubernetes"},"product_reference":"kubernetes","relates_to_product_reference":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1"}]},"vulnerabilities":[{"cve":"CVE-2019-9946","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2019-9946"}],"notes":[{"category":"general","text":"Cloud Native Computing Foundation (CNCF) CNI (Container Networking Interface) 0.7.4 has a network firewall misconfiguration which affects Kubernetes. The CNI 'portmap' plugin, used to setup HostPorts for CNI, inserts rules at the front of the iptables nat chains; which take precedence over the KUBE- SERVICES chain. Because of this, the HostPort/portmap rule could match incoming traffic even if there were better fitting, more specific service definition rules like NodePorts later in the chain. The issue is fixed in CNI 0.7.5 and Kubernetes 1.11.9, 1.12.7, 1.13.5, and 1.14.0.","title":"CVE description"}],"product_status":{"known_not_affected":["Magnum Orchestration 7:kubernetes","SUSE CaaS Platform 4.0:kubernetes","SUSE CaaS Platform 4.0:kubernetes-client","SUSE CaaS Platform 4.0:kubernetes-common","SUSE CaaS Platform 4.0:kubernetes-kubeadm","SUSE CaaS Platform 4.0:kubernetes-kubelet","SUSE Container as a Service Platform 2.0:kubernetes","SUSE Linux Enterprise High Performance Computing 12:kubernetes","SUSE Linux Enterprise High Performance Computing 12:kubernetes-client","SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:kubernetes","SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:kubernetes-client","SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:kubernetes-common","SUSE Linux Enterprise Module for Public Cloud 12:kubernetes","SUSE Linux Enterprise Module for Public Cloud 12:kubernetes-client","SUSE Linux Enterprise Server 12 SP3:kubernetes","SUSE Linux Enterprise Server 12 SP3:kubernetes-client","SUSE Linux Enterprise Server 12 SP4:kubernetes","SUSE Linux Enterprise Server 12 SP4:kubernetes-client","SUSE Linux Enterprise Server 12 SP5:kubernetes","SUSE Linux Enterprise Server 12 SP5:kubernetes-client","SUSE Linux Enterprise Server 12:kubernetes","SUSE Linux Enterprise Server 12:kubernetes-client","SUSE Linux Enterprise Server Business Critical Linux 15 SP1:kubernetes","SUSE Linux Enterprise Server for SAP Applications 12 SP3:kubernetes","SUSE Linux Enterprise Server for SAP Applications 12 SP3:kubernetes-client","SUSE Linux Enterprise Server for SAP Applications 12 SP4:kubernetes","SUSE Linux Enterprise Server for SAP Applications 12 SP4:kubernetes-client","SUSE Linux Enterprise Server for SAP Applications 12 SP5:kubernetes","SUSE Linux Enterprise Server for SAP Applications 12 SP5:kubernetes-client","SUSE Linux Enterprise Server for SAP Applications 12:kubernetes","SUSE Linux Enterprise Server for SAP Applications 12:kubernetes-client"],"recommended":["SUSE Liberty Linux 8:buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:cockpit-podman-4-1.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:container-selinux-2.107-2.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:podman-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805","SUSE Liberty Linux 8:toolbox-0.0.4-1.module+el8.1.0+4081+b29780af","openSUSE Tumbleweed:k3s-1.21.3+k3s1-1.2"]},"references":[{"category":"external","summary":"CVE-2019-9946","url":"https://www.suse.com/security/cve/CVE-2019-9946"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1131057 for CVE-2019-9946","url":"https://bugzilla.suse.com/1131057"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Liberty Linux 8:buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:cockpit-podman-4-1.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:container-selinux-2.107-2.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:podman-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805","SUSE Liberty Linux 8:toolbox-0.0.4-1.module+el8.1.0+4081+b29780af","openSUSE Tumbleweed:k3s-1.21.3+k3s1-1.2"]}],"scores":[{"cvss_v3":{"baseScore":6.5,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L","version":"3.0"},"products":["SUSE Liberty Linux 8:buildah-1.9.0-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:buildah-tests-1.9.0-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:cockpit-podman-4-1.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:container-selinux-2.107-2.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:containernetworking-plugins-0.8.1-2.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:containers-common-0.1.37-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:fuse-overlayfs-0.4.1-1.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:oci-umount-2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:podman-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-docker-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-manpages-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-remote-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:podman-tests-1.4.2-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:python-podman-api-1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:runc-1.0.0-60.rc8.module+el8.1.0+4081+b29780af","SUSE Liberty Linux 8:skopeo-0.1.37-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:skopeo-tests-0.1.37-5.module+el8.1.0+4240+893c1ab8","SUSE Liberty Linux 8:slirp4netns-0.3.0-4.module+el8.1.0+4306+1d917805","SUSE Liberty Linux 8:toolbox-0.0.4-1.module+el8.1.0+4081+b29780af","openSUSE Tumbleweed:k3s-1.21.3+k3s1-1.2"]}],"threats":[{"category":"impact","date":"2019-03-29T21:36:23Z","details":"moderate"}],"title":"CVE-2019-9946"}]}