[openSUSE-SU-2022:0334-1] Security update for containerd, docker
Severity
Moderate
Affected Packages
26
CVEs
5
Security update for containerd, docker
This update for containerd, docker fixes the following issues:
- CVE-2021-41089: Fixed 'cp' can chmod host files (bsc#1191015).
- CVE-2021-41091: Fixed flaw that could lead to data directory traversal in moby (bsc#1191434).
- CVE-2021-41092: Fixed exposed user credentials with a misconfigured configuration file (bsc#1191334).
- CVE-2021-41103: Fixed file access to local users in containerd (bsc#1191121).
- CVE-2021-41190: Fixed OCI manifest and index parsing confusion (bsc#1193273).
- ID
- openSUSE-SU-2022:0334-1
- Severity
- moderate
- URL
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ULRUJXC3YBVKDKJAERWLY6BKJ7U3246G/
- Published
-
2022-02-04T08:31:13
(2 years ago) - Modified
-
2022-02-04T08:31:13
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS-2021-1537
- ALAS-2021-1540
- ALAS-2021-1551
- ALPINE:CVE-2021-41089
- ALPINE:CVE-2021-41091
- ALPINE:CVE-2021-41092
- ALPINE:CVE-2021-41103
- ALPINE:CVE-2021-41190
- DSA-5002-1
- ELSA-2022-7457
- FEDORA-2021-3dda301691
- FEDORA-2021-62352983b4
- FEDORA-2021-6789ed60f2
- FEDORA-2021-6dc68dbe4d
- FEDORA-2021-79ba5abef6
- FEDORA-2021-aacef7fa15
- FEDORA-2021-b5a9a481a2
- FEDORA-2021-d250fc2622
- FEDORA-2021-df975338d4
- FEDORA-2021-eb2742b148
- GLSA-202401-31
- GO-2024-2500
- GO-2024-2912
- GO-2024-2913
- MS:CVE-2021-41103
- openSUSE-SU-2021:1404-1
- openSUSE-SU-2021:1525-1
- openSUSE-SU-2021:3506-1
- RHSA-2022:7457
- RLSA-2022:7457
- SUSE-SU-2021:3336-1
- SUSE-SU-2021:3506-1
- SUSE-SU-2022:0213-1
- SUSE-SU-2022:0334-1
- SUSE-SU-2022:1507-1
- SUSE-SU-2023:0187-1
- SUSE-SU-2023:0326-1
- USN-5100-1
- USN-5103-1
- USN-5134-1
- USN-5521-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/opensuse/docker?arch=x86_64&distro=opensuse-leap-15.3 | opensuse | docker | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/opensuse/docker?arch=s390x&distro=opensuse-leap-15.3 | opensuse | docker | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/opensuse/docker?arch=ppc64le&distro=opensuse-leap-15.3 | opensuse | docker | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/opensuse/docker?arch=aarch64&distro=opensuse-leap-15.3 | opensuse | docker | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | aarch64 | |
Affected | pkg:rpm/opensuse/docker-zsh-completion?arch=noarch&distro=opensuse-leap-15.3 | opensuse | docker-zsh-completion | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/opensuse/docker-kubic?arch=x86_64&distro=opensuse-leap-15.3 | opensuse | docker-kubic | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/opensuse/docker-kubic?arch=s390x&distro=opensuse-leap-15.3 | opensuse | docker-kubic | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/opensuse/docker-kubic?arch=ppc64le&distro=opensuse-leap-15.3 | opensuse | docker-kubic | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/opensuse/docker-kubic?arch=aarch64&distro=opensuse-leap-15.3 | opensuse | docker-kubic | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | aarch64 | |
Affected | pkg:rpm/opensuse/docker-kubic-zsh-completion?arch=noarch&distro=opensuse-leap-15.3 | opensuse | docker-kubic-zsh-completion | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/opensuse/docker-kubic-kubeadm-criconfig?arch=x86_64&distro=opensuse-leap-15.3 | opensuse | docker-kubic-kubeadm-criconfig | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/opensuse/docker-kubic-kubeadm-criconfig?arch=s390x&distro=opensuse-leap-15.3 | opensuse | docker-kubic-kubeadm-criconfig | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/opensuse/docker-kubic-kubeadm-criconfig?arch=ppc64le&distro=opensuse-leap-15.3 | opensuse | docker-kubic-kubeadm-criconfig | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/opensuse/docker-kubic-kubeadm-criconfig?arch=aarch64&distro=opensuse-leap-15.3 | opensuse | docker-kubic-kubeadm-criconfig | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | aarch64 | |
Affected | pkg:rpm/opensuse/docker-kubic-fish-completion?arch=noarch&distro=opensuse-leap-15.3 | opensuse | docker-kubic-fish-completion | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/opensuse/docker-kubic-bash-completion?arch=noarch&distro=opensuse-leap-15.3 | opensuse | docker-kubic-bash-completion | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/opensuse/docker-fish-completion?arch=noarch&distro=opensuse-leap-15.3 | opensuse | docker-fish-completion | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/opensuse/docker-bash-completion?arch=noarch&distro=opensuse-leap-15.3 | opensuse | docker-bash-completion | < 20.10.12_ce-159.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/opensuse/containerd?arch=x86_64&distro=opensuse-leap-15.3 | opensuse | containerd | < 1.4.12-60.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/opensuse/containerd?arch=s390x&distro=opensuse-leap-15.3 | opensuse | containerd | < 1.4.12-60.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/opensuse/containerd?arch=ppc64le&distro=opensuse-leap-15.3 | opensuse | containerd | < 1.4.12-60.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/opensuse/containerd?arch=aarch64&distro=opensuse-leap-15.3 | opensuse | containerd | < 1.4.12-60.1 | opensuse-leap-15.3 | aarch64 | |
Affected | pkg:rpm/opensuse/containerd-ctr?arch=x86_64&distro=opensuse-leap-15.3 | opensuse | containerd-ctr | < 1.4.12-60.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/opensuse/containerd-ctr?arch=s390x&distro=opensuse-leap-15.3 | opensuse | containerd-ctr | < 1.4.12-60.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/opensuse/containerd-ctr?arch=ppc64le&distro=opensuse-leap-15.3 | opensuse | containerd-ctr | < 1.4.12-60.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/opensuse/containerd-ctr?arch=aarch64&distro=opensuse-leap-15.3 | opensuse | containerd-ctr | < 1.4.12-60.1 | opensuse-leap-15.3 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |