[ELSA-2020-1932] container-tools:ol8 security update
buildah
[1.11.6-8.0.1]
- Fixes troubles with oracle registry login [Orabug: 29937283]
[1.11.6-8]
- fix 'CVE-2020-10696 buildah: crafted input tar file may lead to local file overwriting during image build process'
- Resolves: #1817742
[1.11.6-7]
- fix 'COPY command takes long time with buildah'
- Resolves: #1806120
cockpit-podman
[12-1]
- Configure CPU share for system containers
- Translation updates
conmon
[2:2.0.6-1.0.1]
- Remove upstream references [Orabug: 30871880]
[2:2.0.6-1]
- update to 2.0.6
- Related: RHELPLAN-25139
containernetworking-plugins
[0.8.3-5.0.1]
- Disable debuginfo
[0.8.3-5]
- compile with no_openssl
- Related: RHELPLAN-25139
podman
[1.6.4-11.0.1]
- delivering fix for [Orabug: 29874238] by Nikita Gerasimov nikita.gerasimov@oracle.com
[1.6.4-11]
- fix 'CVE-2020-10696 buildah: crafted input tar file may lead to local file overwriting during image build process'
- Resolves: #1817747
python-podman-api
[1.2.0-0.2.gitd0a45fe]
- revert update to 1.6.0 due to new python3-pbr dependency which
is not in RHEL
- Related: RHELPLAN-25139
runc
[1.0.0-65.rc10]
- address CVE-2019-19921 by updating to rc10
- Resolves: #1801887
skopeo
[0.1.40-11.0.1]
- Add oracle registry into the conf file [Orabug: 29845934 31306708]
- Fix oracle registry login issues [Orabug: 29937192]
[1:0.1.40-11]
- add docker.io into the default registry list
- Related: #1810053
- ID
- ELSA-2020-1932
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2020-1932.html
- Published
-
2020-05-12T00:00:00
(4 years ago) - Modified
-
2020-05-12T00:00:00
(4 years ago) - Rights
- Copyright 2020 Oracle, Inc.
- Other Advisories
-
- ALPINE:CVE-2020-10696
- ALSA-2020:1926
- ALSA-2020:1931
- ALSA-2020:1932
- ELSA-2020-1926
- ELSA-2020-1931
- openSUSE-SU-2020:2106-1
- openSUSE-SU-2021:0310-1
- openSUSE-SU-2022:0770-1
- RHSA-2020:1926
- RHSA-2020:1931
- RHSA-2020:1932
- RLSA-2020:1926
- RLSA-2020:1931
- RLSA-2020:1932
- SUSE-SU-2020:3423-1
- SUSE-SU-2022:0770-1
- SUSE-SU-2022:3480-1
- SUSE-SU-2022:3655-1
- SUSE-SU-2022:3766-1
- SUSE-SU-2022:4349-1
- SUSE-SU-2022:4350-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2020-1932 | https://linux.oracle.com/errata/ELSA-2020-1932.html | |
CVE | CVE-2020-10696 | https://linux.oracle.com/cve/CVE-2020-10696.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/udica?distro=oraclelinux-8.2 | oraclelinux | udica | < 0.2.1-2.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/slirp4netns?distro=oraclelinux-8.2 | oraclelinux | slirp4netns | < 0.4.2-3.git21fdece.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/skopeo?distro=oraclelinux-8.2 | oraclelinux | skopeo | < 0.1.40-11.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/skopeo-tests?distro=oraclelinux-8.2 | oraclelinux | skopeo-tests | < 0.1.40-11.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/runc?distro=oraclelinux-8.2 | oraclelinux | runc | < 1.0.0-65.rc10.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/python3-criu?distro=oraclelinux-8.2 | oraclelinux | python3-criu | < 3.12-9.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/python-podman-api?distro=oraclelinux-8.2 | oraclelinux | python-podman-api | < 1.2.0-0.2.gitd0a45fe.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/podman?distro=oraclelinux-8.2 | oraclelinux | podman | < 1.6.4-11.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/podman-tests?distro=oraclelinux-8.2 | oraclelinux | podman-tests | < 1.6.4-11.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/podman-remote?distro=oraclelinux-8.2 | oraclelinux | podman-remote | < 1.6.4-11.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/podman-docker?distro=oraclelinux-8.2 | oraclelinux | podman-docker | < 1.6.4-11.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/fuse-overlayfs?distro=oraclelinux-8.2 | oraclelinux | fuse-overlayfs | < 0.7.2-5.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/criu?distro=oraclelinux-8.2 | oraclelinux | criu | < 3.12-9.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/crit?distro=oraclelinux-8.2 | oraclelinux | crit | < 3.12-9.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/containers-common?distro=oraclelinux-8.2 | oraclelinux | containers-common | < 0.1.40-11.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/containernetworking-plugins?distro=oraclelinux-8.2 | oraclelinux | containernetworking-plugins | < 0.8.3-5.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/container-selinux?distro=oraclelinux-8.2 | oraclelinux | container-selinux | < 2.124.0-1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/conmon?distro=oraclelinux-8.2 | oraclelinux | conmon | < 2.0.6-1.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/cockpit-podman?distro=oraclelinux-8.2 | oraclelinux | cockpit-podman | < 12-1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/buildah?distro=oraclelinux-8.2 | oraclelinux | buildah | < 1.11.6-8.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 | ||
Affected | pkg:rpm/oraclelinux/buildah-tests?distro=oraclelinux-8.2 | oraclelinux | buildah-tests | < 1.11.6-8.0.1.module+el8.2.0+7615+180dc822 | oraclelinux-8.2 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |