ALSA-2021:2371

[ALSA-2021:2371] Important: container-tools:rhel8 security update

Type:

security

Severity:

important

Release date:

2023-03-13

Description:

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

Security Fix(es):

* runc: vulnerable to symlink exchange attack (CVE-2021-30465)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	criu-3.15-1.module_el8.6.0+2876+9ed4eae2.aarch64.rpm	183bda468943a18b6ad10f132ac7b8ad92c5ba67382f18c333c8c9aa867498a4
aarch64	python3-criu-3.15-1.module_el8.6.0+2876+9ed4eae2.aarch64.rpm	2c7f1ee8ae4215d079cff1e2b603282a859335d29bd594ea9af2b34898b61f0b
aarch64	containernetworking-plugins-0.9.1-1.module_el8.6.0+2876+9ed4eae2.aarch64.rpm	3f0c39e32bbcb770678be8761bf54de06006a20775a7b770a14e52d6a06b3829
aarch64	crit-3.15-1.module_el8.6.0+2876+9ed4eae2.aarch64.rpm	9736844ada2bb607243e5c208ad7849c2a30f63c7a355b98d3ec2b58fd0553a7
aarch64	libslirp-devel-4.3.1-1.module_el8.6.0+2876+9ed4eae2.aarch64.rpm	bf78102e9bec56771abff788e3e9faa89d9851415bd9113306a377b5e4217b09
aarch64	libslirp-4.3.1-1.module_el8.6.0+2876+9ed4eae2.aarch64.rpm	f719eed0bd389be60c4c101043a6341134725a1dcea82f94b45108a00a3826b0
aarch64	slirp4netns-1.1.8-1.module_el8.6.0+2876+9ed4eae2.aarch64.rpm	f9f089fce7f81a740a5e0f4b0bd3d6bdf571a5957dde324c949f356db249314e
noarch	udica-0.2.4-1.module_el8.6.0+2876+9ed4eae2.noarch.rpm	5127ec25a6d4632da80e860fe822430306d9edd11da0e2720e8993208343d5b0
noarch	cockpit-podman-29-2.module_el8.6.0+2876+9ed4eae2.noarch.rpm	ca63901ffa3247a330ba3fdd859e8ce0a9963d6f27c13d2480ec70ad444226c3
ppc64le	containernetworking-plugins-0.9.1-1.module_el8.6.0+2876+9ed4eae2.ppc64le.rpm	11b3499552b00bd188b40a0adecb3f5bea02a64d93b185ae08c78110cd6a47c4
ppc64le	libslirp-4.3.1-1.module_el8.6.0+2876+9ed4eae2.ppc64le.rpm	7e321e8815bb1d11f925c77d7b0804a162490902f67d405602ad4f5220597a61
ppc64le	python3-criu-3.15-1.module_el8.6.0+2876+9ed4eae2.ppc64le.rpm	900eb64a1ea3f8d7517d19f3f2f017f137e04d3c3da5aaeb4b48f4b3edafb363
ppc64le	slirp4netns-1.1.8-1.module_el8.6.0+2876+9ed4eae2.ppc64le.rpm	94aacc55967ad7e354ce1c8f81cbaf8109b2efe6d84a02ab4f1f86a507a058d2
ppc64le	libslirp-devel-4.3.1-1.module_el8.6.0+2876+9ed4eae2.ppc64le.rpm	9becdb022aca7853e26027a20244f2bedf325eb9f06ce3943d0221d2ceca4f77
ppc64le	crit-3.15-1.module_el8.6.0+2876+9ed4eae2.ppc64le.rpm	aad15709cc1072405bbb1e2e6ae948b251b9cc13875e66424429a83566effdb0
ppc64le	criu-3.15-1.module_el8.6.0+2876+9ed4eae2.ppc64le.rpm	be3bb39d472b615ddf851ffd90b90bac650096c32663aed0cb291c2a941f1506
x86_64	criu-3.15-1.module_el8.6.0+2876+9ed4eae2.x86_64.rpm	1ec8368433e7d6bbd4ec3ed6caa3182fd0ee197898f10436b5b47838bbbba77c
x86_64	libslirp-devel-4.3.1-1.module_el8.6.0+2876+9ed4eae2.x86_64.rpm	27c0497463caea3a884f35c234bebfa9913644f0836bdebdb5ddf36a8c8705d8
x86_64	containernetworking-plugins-0.9.1-1.module_el8.6.0+2876+9ed4eae2.x86_64.rpm	27d5db39b7c8fd45330ee33d345f875c1f3fecdbcf0007d403aa6a6cbec13d49
x86_64	crit-3.15-1.module_el8.6.0+2876+9ed4eae2.x86_64.rpm	3aaf5f27dcda843a3ec58617a3dae9c84280708e037614ac1c944f68b73a29fa
x86_64	python3-criu-3.15-1.module_el8.6.0+2876+9ed4eae2.x86_64.rpm	8d73f6e4d23b62c73efa11f8e61b1e5e9d99518aff894c426d644b2e0ffdee18
x86_64	libslirp-4.3.1-1.module_el8.6.0+2876+9ed4eae2.x86_64.rpm	9e1495b5d6fb661fcea9e2d6b6a0e2098aa2341924c6d0f0790a7dd9ffded4f0
x86_64	slirp4netns-1.1.8-1.module_el8.6.0+2876+9ed4eae2.x86_64.rpm	ae330e32cefa5765da6bb66e2805eb85c5042ea98056d9222309322d5f336160
x86_64	conmon-2.0.26-3.module_el8.7.0+3406+a17c4180.x86_64.rpm	efcb025846275c9427d64224c1e1fec15106eb8172f7977c6d7466f7e7f56af1

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.