Oval Definition:oval:org.opensuse.security:def:66828
Revision Date:2021-06-11Version:1
Title:Security update for containerd, docker, runc (Important)
Description:

This update for containerd, docker, runc fixes the following issues:

Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594)

Switch version to use -ce suffix rather than _ce to avoid confusing other tools (bsc#1182476). * CVE-2021-21284: Fixed a potential privilege escalation when the root user in the remapped namespace has access to the host filesystem (bsc#1181732) * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest crashes the dockerd daemon (bsc#1181730). * btrfs quotas being removed by Docker regularly (bsc#1183855, bsc#1175081)

runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962).

Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821). * Fixed /dev/null is not available (bsc#1168481). * CVE-2021-30465: Fixed a symlink-exchange attack vulnarability (bsc#1185405).

containerd was updated to v1.4.4

CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397). * Handle a requirement from docker (bsc#1181594).
Family:unixClass:patch
Status:Reference(s):1168481
1175081
1175821
1181594
1181641
1181677
1181730
1181732
1181749
1182451
1182476
1182947
1183024
1183855
1184768
1184962
1185405
CVE-2015-0778
CVE-2019-10183
CVE-2019-3685
CVE-2021-21284
CVE-2021-21285
CVE-2021-21334
CVE-2021-30465
Platform(s):SUSE Linux Enterprise Module for Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
  • AND osc-0.168.2-3.15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • virt-install-2.2.1-8 is installed
  • OR virt-manager-2.2.1-8 is installed
  • OR virt-manager-common-2.2.1-8 is installed
  • BACK