[ALSA-2021:2371] container-tools:rhel8 security update
Severity
Important
Affected Packages
44
CVEs
1
An update for the container-tools:rhel8 module is now available for AlmaLinux AlmaLinux Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
Security Fix(es):
- runc: vulnerable to symlink exchange attack (CVE-2021-30465)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- ID
- ALSA-2021:2371
- Severity
- important
- URL
- https://errata.almalinux.org/ALSA-2021:2371.html
- Published
-
2021-06-10T07:45:39
(3 years ago) - Modified
-
2023-03-13T16:34:06
(18 months ago) - Rights
- Copyright 2022 AlmaLinux OS
- Other Advisories
-
-
ALAS-2021-1499
-
ALPINE:CVE-2021-30465
-
ALSA-2021:2291
-
ALSA-2021:2370
-
ASA-202105-17
-
ELSA-2021-14902
-
ELSA-2021-15112
-
ELSA-2021-2291
-
ELSA-2021-2370
-
ELSA-2021-2371
-
ELSA-2021-9298
-
ELSA-2021-9329
-
FEDORA-2021-0440f235a0
-
FEDORA-2021-2eb67ba3c2
-
GLSA-202107-26
-
openSUSE-SU-2021:0878-1
-
openSUSE-SU-2021:1404-1
-
openSUSE-SU-2021:1954-1
-
openSUSE-SU-2021:3506-1
-
RHSA-2021:2291
-
RHSA-2021:2370
-
RHSA-2021:2371
-
RLSA-2021:2291
-
RLSA-2021:2370
-
RLSA-2021:2371
-
SUSE-SU-2021:1885-1
-
SUSE-SU-2021:1954-1
-
SUSE-SU-2021:3336-1
-
SUSE-SU-2021:3506-1
-
USN-4867-1
-
USN-4960-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Self | ALSA-2021-2371 |
|
|
| CVE | CVE-2021-30465 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/almalinux/udica?arch=noarch&distro=almalinux-8.6 | almalinux |
 udica
|
< 0.2.4-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | noarch | |
| Affected | pkg:rpm/almalinux/udica?arch=noarch&distro=almalinux-8.4 | almalinux |
udica
|
< 0.2.4-1.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | noarch | |
| Affected | pkg:rpm/almalinux/toolbox?arch=noarch&distro=almalinux-8.4 | almalinux |
toolbox
|
< 0.0.8-1.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | noarch | |
| Affected | pkg:rpm/almalinux/slirp4netns?arch=x86_64&distro=almalinux-8.6 | almalinux |
slirp4netns
|
< 1.1.8-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | x86_64 | |
| Affected | pkg:rpm/almalinux/slirp4netns?arch=x86_64&distro=almalinux-8.4 | almalinux |
slirp4netns
|
< 1.1.8-1.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/slirp4netns?arch=aarch64&distro=almalinux-8.6 | almalinux |
slirp4netns
|
< 1.1.8-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | aarch64 | |
| Affected | pkg:rpm/almalinux/skopeo?arch=x86_64&distro=almalinux-8.4 | almalinux |
skopeo
|
< 1.2.2-10.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/skopeo-tests?arch=x86_64&distro=almalinux-8.4 | almalinux |
skopeo-tests
|
< 1.2.2-10.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/runc?arch=x86_64&distro=almalinux-8.4 | almalinux |
runc
|
< 1.0.0-73.rc93.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/python3-criu?arch=x86_64&distro=almalinux-8.6 | almalinux |
python3-criu
|
< 3.15-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | x86_64 | |
| Affected | pkg:rpm/almalinux/python3-criu?arch=x86_64&distro=almalinux-8.4 | almalinux |
python3-criu
|
< 3.15-1.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/python3-criu?arch=aarch64&distro=almalinux-8.6 | almalinux |
python3-criu
|
< 3.15-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | aarch64 | |
| Affected | pkg:rpm/almalinux/podman?arch=x86_64&distro=almalinux-8.4 | almalinux |
podman
|
< 3.0.1-7.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/podman-tests?arch=x86_64&distro=almalinux-8.4 | almalinux |
podman-tests
|
< 3.0.1-7.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/podman-remote?arch=x86_64&distro=almalinux-8.4 | almalinux |
podman-remote
|
< 3.0.1-7.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/podman-plugins?arch=x86_64&distro=almalinux-8.4 | almalinux |
podman-plugins
|
< 3.0.1-7.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/podman-docker?arch=noarch&distro=almalinux-8.4 | almalinux |
podman-docker
|
< 3.0.1-7.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | noarch | |
| Affected | pkg:rpm/almalinux/podman-catatonit?arch=x86_64&distro=almalinux-8.4 | almalinux |
podman-catatonit
|
< 3.0.1-7.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/oci-seccomp-bpf-hook?arch=x86_64&distro=almalinux-8.4 | almalinux |
oci-seccomp-bpf-hook
|
< 1.2.0-2.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/libslirp?arch=x86_64&distro=almalinux-8.6 | almalinux |
libslirp
|
< 4.3.1-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | x86_64 | |
| Affected | pkg:rpm/almalinux/libslirp?arch=x86_64&distro=almalinux-8.4 | almalinux |
libslirp
|
< 4.3.1-1.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/libslirp?arch=aarch64&distro=almalinux-8.6 | almalinux |
libslirp
|
< 4.3.1-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | aarch64 | |
| Affected | pkg:rpm/almalinux/libslirp-devel?arch=x86_64&distro=almalinux-8.6 | almalinux |
libslirp-devel
|
< 4.3.1-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | x86_64 | |
| Affected | pkg:rpm/almalinux/libslirp-devel?arch=x86_64&distro=almalinux-8.4 | almalinux |
libslirp-devel
|
< 4.3.1-1.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/libslirp-devel?arch=aarch64&distro=almalinux-8.6 | almalinux |
libslirp-devel
|
< 4.3.1-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | aarch64 | |
| Affected | pkg:rpm/almalinux/fuse-overlayfs?arch=x86_64&distro=almalinux-8.4 | almalinux |
fuse-overlayfs
|
< 1.4.0-3.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/crun?arch=x86_64&distro=almalinux-8.4 | almalinux |
crun
|
< 0.18-2.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/criu?arch=x86_64&distro=almalinux-8.6 | almalinux |
criu
|
< 3.15-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | x86_64 | |
| Affected | pkg:rpm/almalinux/criu?arch=x86_64&distro=almalinux-8.4 | almalinux |
criu
|
< 3.15-1.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/criu?arch=aarch64&distro=almalinux-8.6 | almalinux |
criu
|
< 3.15-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | aarch64 | |
| Affected | pkg:rpm/almalinux/crit?arch=x86_64&distro=almalinux-8.6 | almalinux |
crit
|
< 3.15-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | x86_64 | |
| Affected | pkg:rpm/almalinux/crit?arch=x86_64&distro=almalinux-8.4 | almalinux |
crit
|
< 3.15-1.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/crit?arch=aarch64&distro=almalinux-8.6 | almalinux |
crit
|
< 3.15-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | aarch64 | |
| Affected | pkg:rpm/almalinux/containers-common?arch=x86_64&distro=almalinux-8.4 | almalinux |
containers-common
|
< 1.2.2-10.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/containernetworking-plugins?arch=x86_64&distro=almalinux-8.6 | almalinux |
containernetworking-plugins
|
< 0.9.1-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | x86_64 | |
| Affected | pkg:rpm/almalinux/containernetworking-plugins?arch=x86_64&distro=almalinux-8.4 | almalinux |
containernetworking-plugins
|
< 0.9.1-1.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/containernetworking-plugins?arch=aarch64&distro=almalinux-8.6 | almalinux |
containernetworking-plugins
|
< 0.9.1-1.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | aarch64 | |
| Affected | pkg:rpm/almalinux/container-selinux?arch=noarch&distro=almalinux-8.4 | almalinux |
container-selinux
|
< 2.162.0-1.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | noarch | |
| Affected | pkg:rpm/almalinux/conmon?arch=x86_64&distro=almalinux-8.7 | almalinux |
conmon
|
< 2.0.26-3.module_el8.7.0+3406+a17c4180 | almalinux-8.7 | x86_64 | |
| Affected | pkg:rpm/almalinux/conmon?arch=x86_64&distro=almalinux-8.4 | almalinux |
conmon
|
< 2.0.26-3.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/cockpit-podman?arch=noarch&distro=almalinux-8.6 | almalinux |
cockpit-podman
|
< 29-2.module_el8.6.0+2876+9ed4eae2 | almalinux-8.6 | noarch | |
| Affected | pkg:rpm/almalinux/cockpit-podman?arch=noarch&distro=almalinux-8.4 | almalinux |
cockpit-podman
|
< 29-2.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | noarch | |
| Affected | pkg:rpm/almalinux/buildah?arch=x86_64&distro=almalinux-8.4 | almalinux |
buildah
|
< 1.19.7-2.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 | |
| Affected | pkg:rpm/almalinux/buildah-tests?arch=x86_64&distro=almalinux-8.4 | almalinux |
buildah-tests
|
< 1.19.7-2.module_el8.4.0+2481+9da8acfb | almalinux-8.4 | x86_64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |