Oval Definition:oval:com.redhat.rhsa:def:20194269
Revision Date:2019-12-17Version:637
Title:RHSA-2019:4269: container-tools:rhel8 security and bug fix update (Important)
Description:The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

Security Fix(es):

  • HTTP/2: flood using PING frames results in unbounded memory growth (CVE-2019-9512)

  • HTTP/2: flood using HEADERS frames results in unbounded memory growth (CVE-2019-9514)

  • runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc (CVE-2019-16884)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Bug Fix(es):

  • avc: podman run --security-opt label=type:svirt_qemu_net_t (BZ#1764318)

  • backport json-file logging support to 1.4.2 (BZ#1770176)

  • Selinux won't allow SCTP inter pod communication (BZ#1774382)
    • Family:unixClass:patch
    Status:Reference(s):CVE-2019-16884
    CVE-2019-18466
    CVE-2019-9512
    CVE-2019-9514
    RHSA-2019:4269
    Platform(s):Red Hat Enterprise Linux 8
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 8 is installed
  • OR Red Hat CoreOS 4 is installed
  • AND
  • Module container-tools:rhel8 is enabled
    • BACK