[ELSA-2019-4269] container-tools:ol8 security and bug fix update

Severity Important

Affected Packages 19

CVEs 3

buildah
[1.9.0-5.0.1]
- Fixes troubles with oracle registry login [Orabug: 29937283]

[1.9.0-5]
- Use autosetup macro again.

[1.9.0-4]
- Fix CVE-2019-10214 (#1734653).

[1.9.0-3]
- Resolves: #1721247 - enable fips mode

[1.9.0-2]
- Resolves: #1720654 - tests subpackage depends on golang explicitly

[1.9.0-1]
- Resolves: #1720654 - rebase to v1.9.0

cockpit-podman
[4-1]
- Fix regression in container commit
- Fix AppStream ID rhbz#1734809

[3-1]
- Enable Commit button for running containers
- Fix race condition with container deletion
- Stop fetching all containers/images for each container/image event

[2-2]
- Fix podman dependency

[2-1]
- Update to upstream 2 release
- Support podman API 1.3
- Support running commands with arguments
- Show the default command coming from image
- Implement filtering of images and containers

containernetworking-plugins
[0.8.1-3.0.1]
- Disable debuginfo

[0.8.1-3]
- rebuild to address CVE-2019-9514 and CVE-2019-9512
- Resolves: #1766318, #1766217

container-selinux
[2:2.123.0-1]
- update to 2.123.0
- Related: #1774382

fuse-overlayfs
[0.4.1-1]
- Resolves: #1720654 - rebase to v0.4.1

[0.3-2]
- rebase
- Resolves:#1666510

podman
[1.4.2-6.0.1]
- Ensure patch for Oracle docker registry is applied [Orabug: 30533101]
- delivering fix for [Orabug: 29874238] by Nikita Gerasimov nikita.gerasimov@oracle.com

[1.4.2-6]
- update to 1.4.2-stable3
- Resolves: #1770176

python-podman-api
[1.2.0-0.1.gitd0a45fe]
- Initial package

runc
[1.0.0-61.rc8]
- backport patches for CVE-2019-16884 from upstream
- Resolves: #1764182

skopeo
[1:0.1.37-6.0.1]
- Ensure patch for Oracle docker registry is applied [Orabug: 30533101]
- Add oracle registry into the conf file [Orabug: 29845934]
- Fix oracle registry login issues [Orabug: 29937192]

[1:0.1.37-6]
- rebuild because of CVE-2019-9512 and CVE-2019-9514
- Resolves: #1772136, #1772131

slirp4netns
[0.3.0-4]
- Fix CVE-2019-14378 (#1755595).

[0.3.0-3]
- Resolves: #1683217 - BR: glib2-devel

[0.3.0-2]
- Resolves: #1683217 - bump slirp4netns to v0.3.0

[0.3.0-1.alpha.2.git30883b5]
- bump to v0.3.0-alpha.2

Package	Affected Version
pkg:rpm/oraclelinux/slirp4netns?distro=oraclelinux-8.1	< 0.3.0-4.module+el8.1.0+5440+994fc847
pkg:rpm/oraclelinux/skopeo?distro=oraclelinux-8.1	< 0.1.37-6.0.1.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/skopeo-tests?distro=oraclelinux-8.1	< 0.1.37-6.0.1.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/runc?distro=oraclelinux-8.1	< 1.0.0-61.rc8.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/python-podman-api?distro=oraclelinux-8.1	< 1.2.0-0.1.gitd0a45fe.module+el8.1.0+5440+994fc847
pkg:rpm/oraclelinux/podman?distro=oraclelinux-8.1	< 1.4.2-6.0.1.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/podman-tests?distro=oraclelinux-8.1	< 1.4.2-6.0.1.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/podman-remote?distro=oraclelinux-8.1	< 1.4.2-6.0.1.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/podman-manpages?distro=oraclelinux-8.1	< 1.4.2-6.0.1.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/podman-docker?distro=oraclelinux-8.1	< 1.4.2-6.0.1.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/oci-umount?distro=oraclelinux-8.1	< 2.3.4-2.git87f9237.module+el8.1.0+5440+994fc847
pkg:rpm/oraclelinux/oci-systemd-hook?distro=oraclelinux-8.1	< 0.1.15-2.git2d0b8a3.module+el8.1.0+5440+994fc847
pkg:rpm/oraclelinux/fuse-overlayfs?distro=oraclelinux-8.1	< 0.4.1-1.module+el8.1.0+5440+994fc847
pkg:rpm/oraclelinux/containers-common?distro=oraclelinux-8.1	< 0.1.37-6.0.1.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/containernetworking-plugins?distro=oraclelinux-8.1	< 0.8.1-3.0.1.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/container-selinux?distro=oraclelinux-8.1	< 2.123.0-2.module+el8.1.0+5460+5d763c32
pkg:rpm/oraclelinux/cockpit-podman?distro=oraclelinux-8.1	< 4-1.module+el8.1.0+5440+994fc847
pkg:rpm/oraclelinux/buildah?distro=oraclelinux-8.1	< 1.9.0-5.0.1.module+el8.1.0+5440+994fc847
pkg:rpm/oraclelinux/buildah-tests?distro=oraclelinux-8.1	< 1.9.0-5.0.1.module+el8.1.0+5440+994fc847

ID

ELSA-2019-4269

Severity

important

URL

https://linux.oracle.com/errata/ELSA-2019-4269.html

Published

2020-01-03T00:00:00
(4 years ago)

Modified

2020-01-03T00:00:00
(4 years ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2019-4269	http://linux.oracle.com/errata/ELSA-2019-4269.html
CVE	CVE-2019-9512	http://linux.oracle.com/cve/CVE-2019-9512.html
CVE	CVE-2019-9514	http://linux.oracle.com/cve/CVE-2019-9514.html
CVE	CVE-2019-16884	http://linux.oracle.com/cve/CVE-2019-16884.html

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:rpm/oraclelinux/slirp4netns?distro=oraclelinux-8.1	oraclelinux	slirp4netns	< 0.3.0-4.module+el8.1.0+5440+994fc847	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/skopeo?distro=oraclelinux-8.1	oraclelinux	skopeo	< 0.1.37-6.0.1.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/skopeo-tests?distro=oraclelinux-8.1	oraclelinux	skopeo-tests	< 0.1.37-6.0.1.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/runc?distro=oraclelinux-8.1	oraclelinux	runc	< 1.0.0-61.rc8.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/python-podman-api?distro=oraclelinux-8.1	oraclelinux	python-podman-api	< 1.2.0-0.1.gitd0a45fe.module+el8.1.0+5440+994fc847	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/podman?distro=oraclelinux-8.1	oraclelinux	podman	< 1.4.2-6.0.1.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/podman-tests?distro=oraclelinux-8.1	oraclelinux	podman-tests	< 1.4.2-6.0.1.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/podman-remote?distro=oraclelinux-8.1	oraclelinux	podman-remote	< 1.4.2-6.0.1.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/podman-manpages?distro=oraclelinux-8.1	oraclelinux	podman-manpages	< 1.4.2-6.0.1.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/podman-docker?distro=oraclelinux-8.1	oraclelinux	podman-docker	< 1.4.2-6.0.1.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/oci-umount?distro=oraclelinux-8.1	oraclelinux	oci-umount	< 2.3.4-2.git87f9237.module+el8.1.0+5440+994fc847	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/oci-systemd-hook?distro=oraclelinux-8.1	oraclelinux	oci-systemd-hook	< 0.1.15-2.git2d0b8a3.module+el8.1.0+5440+994fc847	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/fuse-overlayfs?distro=oraclelinux-8.1	oraclelinux	fuse-overlayfs	< 0.4.1-1.module+el8.1.0+5440+994fc847	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/containers-common?distro=oraclelinux-8.1	oraclelinux	containers-common	< 0.1.37-6.0.1.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/containernetworking-plugins?distro=oraclelinux-8.1	oraclelinux	containernetworking-plugins	< 0.8.1-3.0.1.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/container-selinux?distro=oraclelinux-8.1	oraclelinux	container-selinux	< 2.123.0-2.module+el8.1.0+5460+5d763c32	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/cockpit-podman?distro=oraclelinux-8.1	oraclelinux	cockpit-podman	< 4-1.module+el8.1.0+5440+994fc847	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/buildah?distro=oraclelinux-8.1	oraclelinux	buildah	< 1.9.0-5.0.1.module+el8.1.0+5440+994fc847	oraclelinux-8.1
Affected	pkg:rpm/oraclelinux/buildah-tests?distro=oraclelinux-8.1	oraclelinux	buildah-tests	< 1.9.0-5.0.1.module+el8.1.0+5440+994fc847	oraclelinux-8.1

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date