Oval Definition:oval:org.opensuse.security:def:70240
Revision Date:2021-06-11Version:1
Title:Security update for containerd, docker, runc (Important)
Description:

This update for containerd, docker, runc fixes the following issues:

Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594)

Switch version to use -ce suffix rather than _ce to avoid confusing other tools (bsc#1182476). * CVE-2021-21284: Fixed a potential privilege escalation when the root user in the remapped namespace has access to the host filesystem (bsc#1181732) * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest crashes the dockerd daemon (bsc#1181730). * btrfs quotas being removed by Docker regularly (bsc#1183855, bsc#1175081)

runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962).

Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821). * Fixed /dev/null is not available (bsc#1168481). * CVE-2021-30465: Fixed a symlink-exchange attack vulnarability (bsc#1185405).

containerd was updated to v1.4.4

CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397). * Handle a requirement from docker (bsc#1181594).
Family:unixClass:patch
Status:Reference(s):1168481
1172698
1172704
1175081
1175821
1181594
1181641
1181677
1181730
1181732
1181749
1182451
1182476
1182947
1183024
1183855
1184768
1184962
1185405
CVE-2010-1674
CVE-2010-1675
CVE-2013-2236
CVE-2016-1245
CVE-2016-2342
CVE-2016-4049
CVE-2017-16227
CVE-2017-5495
CVE-2018-5378
CVE-2018-5379
CVE-2018-5380
CVE-2018-5381
CVE-2020-8023
CVE-2021-21284
CVE-2021-21285
CVE-2021-21334
CVE-2021-30465
SUSE-SU-2020:1856-1
SUSE-SU-2021:1954-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libldap-2_4-2-2.4.46-9.31 is installed
  • OR libldap-2_4-2-32bit-2.4.46-9.31 is installed
  • OR libldap-data-2.4.46-9.31 is installed
  • OR openldap2-2.4.46-9.31 is installed
  • OR openldap2-client-2.4.46-9.31 is installed
  • OR openldap2-devel-2.4.46-9.31 is installed
  • OR openldap2-devel-static-2.4.46-9.31 is installed
  • OR openldap2-ppolicy-check-password-1.2-9.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • libfpm_pb0-1.1.1-2 is installed
  • OR libospf0-1.1.1-2 is installed
  • OR libospfapiclient0-1.1.1-2 is installed
  • OR libquagga_pb0-1.1.1-2 is installed
  • OR libzebra1-1.1.1-2 is installed
  • OR quagga-1.1.1-2 is installed
  • OR quagga-devel-1.1.1-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • containerd-1.4.4-5.32.1 is installed
  • OR docker-20.10.6_ce-6.49.3 is installed
  • OR docker-bash-completion-20.10.6_ce-6.49.3 is installed
  • OR runc-1.0.0~rc93-1.14.2 is installed
    • BACK