Oval Definition:oval:org.opensuse.security:def:93163
Revision Date:2022-02-04Version:1
Title: (Moderate)
Description:

This update for containerd, docker fixes the following issues:

- CVE-2021-41089: Fixed 'cp' can chmod host files (bsc#1191015). - CVE-2021-41091: Fixed flaw that could lead to data directory traversal in moby (bsc#1191434). - CVE-2021-41092: Fixed exposed user credentials with a misconfigured configuration file (bsc#1191334). - CVE-2021-41103: Fixed file access to local users in containerd (bsc#1191121). - CVE-2021-41190: Fixed OCI manifest and index parsing confusion (bsc#1193273).
Family:unixClass:patch
Status:Reference(s):1182333
1182619
1182620
1191015
1191121
1191334
1191434
1193273
CVE-2021-22883
CVE-2021-22884
CVE-2021-23840
CVE-2021-41089
CVE-2021-41091
CVE-2021-41092
CVE-2021-41103
CVE-2021-41190
SUSE-SU-2021:0674-1
Platform(s):Image SLES15-SP4-Manager-Proxy-4-3-BYOS
SUSE Manager Retail Branch Server 4.0
Product(s):
Definition Synopsis
  • Image SLES15-SP4-Manager-Proxy-4-3-BYOS is installed
  • AND Package Information
  • containerd-1.4.12-60.1 is installed
  • OR docker-20.10.12_ce-159.1 is installed
    • Definition Synopsis
  • SUSE Manager Retail Branch Server 4.0 is installed
  • AND Package Information
  • nodejs10-10.24.0-1.33.2 is installed
  • OR nodejs10-devel-10.24.0-1.33.2 is installed
  • OR nodejs10-docs-10.24.0-1.33.2 is installed
  • OR npm10-10.24.0-1.33.2 is installed
    • BACK