Oval Definition:oval:org.opensuse.security:def:99959
Revision Date:2021-06-11Version:1
Title: (Important)
Description:

This update for containerd, docker, runc fixes the following issues:

Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594)

Switch version to use -ce suffix rather than _ce to avoid confusing other tools (bsc#1182476). * CVE-2021-21284: Fixed a potential privilege escalation when the root user in the remapped namespace has access to the host filesystem (bsc#1181732) * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest crashes the dockerd daemon (bsc#1181730). * btrfs quotas being removed by Docker regularly (bsc#1183855, bsc#1175081)

runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962).

Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821). * Fixed /dev/null is not available (bsc#1168481). * CVE-2021-30465: Fixed a symlink-exchange attack vulnarability (bsc#1185405).

containerd was updated to v1.4.4

CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397). * Handle a requirement from docker (bsc#1181594).
Family:unixClass:patch
Status:Reference(s):1168481
1175081
1175821
1181594
1181641
1181677
1181730
1181732
1181749
1182451
1182476
1182719
1182947
1183024
1183855
1184155
1184262
1184768
1184962
1185405
CVE-2020-27918
CVE-2020-29623
CVE-2021-1765
CVE-2021-1788
CVE-2021-1789
CVE-2021-1799
CVE-2021-1801
CVE-2021-1844
CVE-2021-1870
CVE-2021-1871
CVE-2021-21284
CVE-2021-21285
CVE-2021-21334
CVE-2021-30465
SUSE-SU-2021:1499-1
Platform(s):Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
SUSE Enterprise Storage 6
Product(s):
Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure is installed
  • AND Package Information
  • containerd-1.4.4-5.32.1 is installed
  • OR docker-20.10.6_ce-6.49.3 is installed
  • OR runc-1.0.0~rc93-1.14.2 is installed
    • Definition Synopsis
  • SUSE Enterprise Storage 6 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.32.0-3.74.1 is installed
  • OR libwebkit2gtk-4_0-37-2.32.0-3.74.1 is installed
  • OR libwebkit2gtk3-lang-2.32.0-3.74.1 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.32.0-3.74.1 is installed
  • OR typelib-1_0-WebKit2-4_0-2.32.0-3.74.1 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.32.0-3.74.1 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.32.0-3.74.1 is installed
  • OR webkit2gtk3-devel-2.32.0-3.74.1 is installed
    • BACK