Oval Definition:	oval:org.opensuse.security:def:64890
Revision Date: 2021-06-11 Version: 1 Title: Security update for containerd, docker, runc (Important) Description: This update for containerd, docker, runc fixes the following issues: Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594) Switch version to use -ce suffix rather than _ce to avoid confusing other tools (bsc#1182476). * CVE-2021-21284: Fixed a potential privilege escalation when the root user in the remapped namespace has access to the host filesystem (bsc#1181732) * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest crashes the dockerd daemon (bsc#1181730). * btrfs quotas being removed by Docker regularly (bsc#1183855, bsc#1175081) runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962). Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821). * Fixed /dev/null is not available (bsc#1168481). * CVE-2021-30465: Fixed a symlink-exchange attack vulnarability (bsc#1185405). containerd was updated to v1.4.4 CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397). * Handle a requirement from docker (bsc#1181594). Family: unix Class: patch Status: Reference(s): 1027519 1084631 1086186 1086227 1086228 1090519 1090840 1106878 1107592 1107594 1108404 1115758 1115774 1115795 1153332 1157490 1167007 1168481 1172205 1172524 1173538 1175081 1175821 1176705 1176707 1181594 1181641 1181677 1181730 1181732 1181749 1182451 1182476 1182947 1183024 1183855 1184768 1184962 1185405 CVE-2018-1000667 CVE-2018-10016 CVE-2018-10254 CVE-2018-10316 CVE-2018-16301 CVE-2018-16382 CVE-2018-16517 CVE-2018-16999 CVE-2018-19214 CVE-2018-19215 CVE-2018-19216 CVE-2018-8881 CVE-2018-8882 CVE-2018-8883 CVE-2019-15165 CVE-2020-0543 CVE-2020-12861 CVE-2020-12862 CVE-2020-12863 CVE-2020-12864 CVE-2020-12865 CVE-2020-12866 CVE-2020-12867 CVE-2020-25039 CVE-2020-25040 CVE-2021-21284 CVE-2021-21285 CVE-2021-21334 CVE-2021-30465 openSUSE-SU-2020:0952-1 openSUSE-SU-2020:1497-1 openSUSE-SU-2020:1798-1 SUSE-SU-2019:2673-1 SUSE-SU-2020:1609-1 SUSE-SU-2021:1954-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Containers 15 SP3 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND nasm-2.14.02-lp151.3.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND singularity-3.6.3-lp152.2.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 SP3 is installed AND Package Information containerd-1.4.4-5.32.1 is installed OR docker-20.10.6_ce-6.49.3 is installed OR docker-bash-completion-20.10.6_ce-6.49.3 is installed OR docker-fish-completion-20.10.6_ce-6.49.3 is installed OR runc-1.0.0~rc93-1.14.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libpcap-1.8.1-4.3 is installed OR libpcap-devel-1.8.1-4.3 is installed OR libpcap1-1.8.1-4.3 is installed
BACK