[ALSA-2020:1926] Important: container-tools:1.0 security and bug fix update
Type:
security
Severity:
important
Release date:
2020-04-28
Description:
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fix(es): * buildah: Crafted input tar file may lead to local file overwrite during image build process (CVE-2020-10696) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * conflicting requests: failed to install container-tools:1.0 (BZ#1813776) * podman run container error with avc denied (BZ#1816541)
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 crit-3.12-9.module_el8.4.0+2496+12421f43.aarch64.rpm 374a246998b4b262308633d7e90f023f83fee938bc4e2ecaf58b602e38a98add
aarch64 criu-3.12-9.module_el8.4.0+2496+12421f43.aarch64.rpm 5e7dc0cc2c02e609705b15993b9bce828f64048241164018a52e4031851b8101
aarch64 oci-umount-2.3.4-2.git87f9237.module_el8.4.0+2496+12421f43.aarch64.rpm 770d344d61dc1877c84a45a546afae1a8f23794049e5a2ec2a2da48f0ebf626b
aarch64 oci-systemd-hook-0.1.15-2.git2d0b8a3.module_el8.4.0+2496+12421f43.aarch64.rpm 82a7c609f0920121fc1ce28ccf8a437f07063d9b4d2c930cec3d6894d962fe15
aarch64 runc-1.0.0-56.rc5.dev.git2abd837.module_el8.4.0+2496+12421f43.aarch64.rpm 86cc800b6ea8c1dd4255f6b4125165b15aa39bc60660c3e1920a9176ddcd64e5
aarch64 fuse-overlayfs-0.3-5.module_el8.4.0+2496+12421f43.aarch64.rpm 90cde31a5e68574aba6ec587bbcb2a0de1926524b781da2f5cd98a055369d4e5
aarch64 python3-criu-3.12-9.module_el8.4.0+2496+12421f43.aarch64.rpm 9d828e00185af8431441a1fcb18cf256576f1e02aa9861e324a61837ad139359
aarch64 slirp4netns-0.1-5.dev.gitc4e1bc5.module_el8.4.0+2496+12421f43.aarch64.rpm c1cf835314899f614ba1d7f4631cee0fd252b476b908f04acfa45e4eba5d7a4f
noarch container-selinux-2.124.0-1.gitf958d0c.module_el8.3.0+2044+12421f43.noarch.rpm 0240e775ea692079b4e103b357346c44891c3eac36b62a0ba85c37394d2dce90
ppc64le oci-systemd-hook-0.1.15-2.git2d0b8a3.module_el8.5.0+119+9a9ec082.ppc64le.rpm 3f0297ea60af68d82bac1e3ff0466762adac366c8888335e60681908c5146ba7
ppc64le oci-umount-2.3.4-2.git87f9237.module_el8.5.0+119+9a9ec082.ppc64le.rpm 6a69d33989417b5db165ed7f7d5c377e2da96c932944e9aeb391bb252300e3c1
ppc64le runc-1.0.0-56.rc5.dev.git2abd837.module_el8.5.0+119+9a9ec082.ppc64le.rpm b33a8341fd5f7df77af76411d868e11d68ca34fe23a292bbf7e9a0e8393dbe17
ppc64le fuse-overlayfs-0.3-5.module_el8.5.0+119+9a9ec082.ppc64le.rpm b38d3c79f63adfad5e2edafe7104366884d814422b01727e13afcacf34d1e1ab
ppc64le crit-3.12-9.module_el8.5.0+119+9a9ec082.ppc64le.rpm b8dbaf91a2da4141f9fdcf2c921381f730daa7eac1571c129942866c33c5e327
ppc64le criu-3.12-9.module_el8.5.0+119+9a9ec082.ppc64le.rpm bcea4da7655728ba18650cd0bd81a4d010af90b71006167821aee191b021d442
ppc64le slirp4netns-0.1-5.dev.gitc4e1bc5.module_el8.5.0+119+9a9ec082.ppc64le.rpm e2d67490beed1afa1197760c87e71f659df9ba950a9fc4e7c4c0884c249de2c3
ppc64le python3-criu-3.12-9.module_el8.5.0+119+9a9ec082.ppc64le.rpm ef0097fef0bd6b1b1c65098059f5e5627c67535f0213dd41ddd25a10dae2d4cf
x86_64 crit-3.12-9.module_el8.3.0+2044+12421f43.x86_64.rpm 16c4565749c2a57835be9f8828b93fa8473bcdeb89754224acfe6e2be2dcd8b5
x86_64 python3-criu-3.12-9.module_el8.3.0+2044+12421f43.x86_64.rpm 3343763ab060b64aa3b643a5148bd26dcd362a89289752d0b7fe4d70be2577aa
x86_64 runc-1.0.0-56.rc5.dev.git2abd837.module_el8.3.0+2044+12421f43.x86_64.rpm 5b1a8e0ed7e4731a2aab6af9cb2909b874fecb8623fa7c58d117980a59f3ef62
x86_64 slirp4netns-0.1-5.dev.gitc4e1bc5.module_el8.3.0+2044+12421f43.x86_64.rpm 5efdbde6841908cf2d204e854b0cef4481a4731dc13b819fca9a8cf5c77aad61
x86_64 fuse-overlayfs-0.3-5.module_el8.3.0+2044+12421f43.x86_64.rpm 813eb4acbccfc1f231c6b9b02b01c70196d7b88c309598a270c55383de41bf36
x86_64 oci-umount-2.3.4-2.git87f9237.module_el8.3.0+2044+12421f43.x86_64.rpm 82477f79b1e2569d7909cf5e334b443d2c90c7e7ae710bb25826a793f46c0e6e
x86_64 criu-3.12-9.module_el8.3.0+2044+12421f43.x86_64.rpm 9dd3b82c1674bfa0186fcf5a66c216a74cdd5c91de3236ece6d091b21f871963
x86_64 oci-systemd-hook-0.1.15-2.git2d0b8a3.module_el8.3.0+2044+12421f43.x86_64.rpm b0316c313c77ab89cb757717f70d4033c6593a3ea657981a4c351d397629218a
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.