Oval Definition:	oval:org.opensuse.security:def:69486
Revision Date: 2021-06-11 Version: 1 Title: Security update for containerd, docker, runc (Important) Description: This update for containerd, docker, runc fixes the following issues: Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594) Switch version to use -ce suffix rather than _ce to avoid confusing other tools (bsc#1182476). * CVE-2021-21284: Fixed a potential privilege escalation when the root user in the remapped namespace has access to the host filesystem (bsc#1181732) * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest crashes the dockerd daemon (bsc#1181730). * btrfs quotas being removed by Docker regularly (bsc#1183855, bsc#1175081) runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962). Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821). * Fixed /dev/null is not available (bsc#1168481). * CVE-2021-30465: Fixed a symlink-exchange attack vulnarability (bsc#1185405). containerd was updated to v1.4.4 CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397). * Handle a requirement from docker (bsc#1181594). Family: unix Class: patch Status: Reference(s): 1055014 1061843 1065600 1065729 1066382 1077428 1112178 1131277 1134760 1148643 1163985 1168481 1170415 1171558 1171924 1173432 1174748 1175081 1175821 1176354 1176485 1176560 1176713 1176723 1177086 1177101 1177271 1177281 1177410 1177411 1177470 1177687 1177719 1177740 1177749 1177750 1177753 1177754 1177755 1177766 1177855 1177856 1177861 1178003 1178027 1178166 1178185 1178187 1178188 1178202 1178234 1178330 1181594 1181641 1181677 1181730 1181732 1181749 1182451 1182476 1182947 1183024 1183855 1184768 1184962 1185405 CVE-2020-0430 CVE-2020-14351 CVE-2020-16120 CVE-2020-1720 CVE-2020-25285 CVE-2020-25656 CVE-2020-27673 CVE-2020-27675 CVE-2020-8694 CVE-2021-21284 CVE-2021-21285 CVE-2021-21334 CVE-2021-30465 SUSE-SU-2020:2149-1 SUSE-SU-2020:3272-1 SUSE-SU-2021:1954-1 Platform(s): SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 15-LTSS Product(s): Definition Synopsis SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information cluster-md-kmp-default-4.12.14-197.67 is installed OR dlm-kmp-default-4.12.14-197.67 is installed OR gfs2-kmp-default-4.12.14-197.67 is installed OR kernel-default-4.12.14-197.67 is installed OR ocfs2-kmp-default-4.12.14-197.67 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libecpg6-12.3-3.8 is installed OR postgresql-12.0.1-8.14 is installed OR postgresql-contrib-12.0.1-8.14 is installed OR postgresql-devel-12.0.1-8.14 is installed OR postgresql-docs-12.0.1-8.14 is installed OR postgresql-plperl-12.0.1-8.14 is installed OR postgresql-plpython-12.0.1-8.14 is installed OR postgresql-pltcl-12.0.1-8.14 is installed OR postgresql-server-12.0.1-8.14 is installed OR postgresql-server-devel-12.0.1-8.14 is installed OR postgresql12-12.3-3.8 is installed OR postgresql12-contrib-12.3-3.8 is installed OR postgresql12-devel-12.3-3.8 is installed OR postgresql12-docs-12.3-3.8 is installed OR postgresql12-plperl-12.3-3.8 is installed OR postgresql12-plpython-12.3-3.8 is installed OR postgresql12-pltcl-12.3-3.8 is installed OR postgresql12-server-12.3-3.8 is installed OR postgresql12-server-devel-12.3-3.8 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information containerd-1.4.4-5.32.1 is installed OR docker-20.10.6_ce-6.49.3 is installed OR docker-bash-completion-20.10.6_ce-6.49.3 is installed OR runc-1.0.0~rc93-1.14.2 is installed
BACK