Oval Definition:oval:org.opensuse.security:def:93632
Revision Date:2022-02-04Version:1
Title: (Moderate)
Description:

This update for containerd, docker fixes the following issues:

- CVE-2021-41089: Fixed 'cp' can chmod host files (bsc#1191015). - CVE-2021-41091: Fixed flaw that could lead to data directory traversal in moby (bsc#1191434). - CVE-2021-41092: Fixed exposed user credentials with a misconfigured configuration file (bsc#1191334). - CVE-2021-41103: Fixed file access to local users in containerd (bsc#1191121). - CVE-2021-41190: Fixed OCI manifest and index parsing confusion (bsc#1193273).
Family:unixClass:patch
Status:Reference(s):1189107
1191015
1191121
1191334
1191434
1193273
CVE-2019-3500
CVE-2021-41089
CVE-2021-41091
CVE-2021-41092
CVE-2021-41103
CVE-2021-41190
openSUSE-SU-2021:1125-1
Platform(s):Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND Package Information
  • aria2-1.35.0-bp153.2.3.1 is installed
  • OR aria2-devel-1.35.0-bp153.2.3.1 is installed
  • OR aria2-lang-1.35.0-bp153.2.3.1 is installed
  • OR libaria2-0-1.35.0-bp153.2.3.1 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE is installed
  • AND Package Information
  • containerd-1.4.12-60.1 is installed
  • OR docker-20.10.12_ce-159.1 is installed
    • BACK