[ALSA-2024:9200] Moderate: runc security update
Type:
security
Severity:
moderate
Release date:
2024-11-18
Description:
The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides container runtime. Security Fix(es): * golang: net: malformed DNS message can cause infinite loop (CVE-2024-24788) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 runc-1.1.13-4.el9.aarch64.rpm 54101a2b6ce71c04ec43ee648544e992c8dabb50549a4b0e33c6e744ab36cbda
ppc64le runc-1.1.13-4.el9.ppc64le.rpm c4a8c42baa141570524002fb16ebb02a350532e0d56f0127a543f0bd85f1f37f
s390x runc-1.1.13-4.el9.s390x.rpm bc3839b84f189045fd693301669451138afada7effc70076eaee3be2166dbcfd
x86_64 runc-1.1.13-4.el9.x86_64.rpm fb927d61e27f28c938be04450e5c3ca9b407a87bf70485eef3e383111bd05a35
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.