A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.Referenceshttps://access.redhat.com/errata/RHSA-2024:0045https://access.redhat.com/errata/RHSA-2024:3718https://access.redhat.com/errata/RHSA-2024:4159https://access.redhat.com/errata/RHSA-2024:4613https://access.redhat.com/errata/RHSA-2024:4850https://access.redhat.com/errata/RHSA-2024:4960https://access.redhat.com/errata/RHSA-2024:5258https://access.redhat.com/errata/RHSA-2024:5951https://access.redhat.com/errata/RHSA-2024:6054https://access.redhat.com/errata/RHSA-2024:6122https://access.redhat.com/errata/RHSA-2024:6708https://access.redhat.com/errata/RHSA-2024:6818https://access.redhat.com/errata/RHSA-2024:6824https://access.redhat.com/errata/RHSA-2024:7164https://access.redhat.com/errata/RHSA-2024:7174https://access.redhat.com/errata/RHSA-2024:7182https://access.redhat.com/errata/RHSA-2024:7187https://access.redhat.com/errata/RHSA-2024:7922https://access.redhat.com/errata/RHSA-2024:7941https://access.redhat.com/errata/RHSA-2024:8260https://access.redhat.com/errata/RHSA-2024:8425https://access.redhat.com/errata/RHSA-2024:9097https://access.redhat.com/errata/RHSA-2024:9098https://access.redhat.com/errata/RHSA-2024:9102https://access.redhat.com/errata/RHSA-2024:9960https://access.redhat.com/security/cve/CVE-2024-3727https://bugzilla.redhat.com/show_bug.cgi?id=2274767
