[ELSA-2020-3053] container-tools:ol8 security, bug fix, and enhancement update
buildah
[1.14.9-1.0.1]
- Fixes troubles with oracle registry login [Orabug: 29937283]
[1.14.9-1]
- update to https://github.com/containers/buildah/releases/tag/v1.14.9
- Related: RHELPLAN-39206
[1.14.8-2]
- make container-selinux a soft dependency
- Related: #1806044
[1.14.8-1]
- update to https://github.com/containers/buildah/releases/tag/v1.14.8
- Related: RHELPLAN-39206
[1.14.7-1]
- initial rhel8-8.2.1 build
- update to https://github.com/containers/buildah/releases/tag/v1.14.7
- Related: RHELPLAN-39206
cockpit-podman
[17-1]
- update to https://github.com/cockpit-project/cockpit-podman/releases/tag/17
- Related: RHELPLAN-39206
[16-1]
- update to https://github.com/cockpit-project/cockpit-podman/releases/tag/v16
- Related: RHELPLAN-39206
[15-1]
- update to https://github.com/cockpit-project/cockpit-podman/releases/tag/15
- Related: RHELPLAN-39206
[12-1]
- Configure CPU share for system containers
- Translation updates
conmon
[2:2.0.17-1.0.1]
- Remove upstream references [Orabug: 30871880]
[2:2.0.17-1]
- update to https://github.com/containers/conmon/releases/tag/v2.0.17
- Related: RHELPLAN-39206
[2:2.0.16-1]
- update to https://github.com/containers/conmon/releases/tag/v2.0.16
- Related: RHELPLAN-39206
[2:2.0.15-1]
- update to 2.0.15
- Related: #1821204
containernetworking-plugins
[0.8.6-1]
- update to https://github.com/containernetworking/plugins/releases/tag/v0.8.6
- Related: RHELPLAN-39206
[0.8.5-1]
- update to https://github.com/containernetworking/plugins/archive/v0.8.5.tar.gz
- Related: RHELPLAN-39206
container-selinux
[2:2.135.0-1]
- update to https://github.com/containers/container-selinux/releases/tag/v2.135.0
- Related: RHELPLAN-39206
[2:2.134.0-1]
- update to https://github.com/containers/container-selinux/releases/tag/v2.134.0
- Related: RHELPLAN-39206
[2:2.132.0-2]
- sync with Fedora and install selinux contexts file into /usr/share/containers/selinux/contexts
(thanks to Dan Walsh)
- do not print error in RPM transaction log when customizable_types file is missing
- Related: RHELPLAN-39206
[2:2.132.0-1]
- update to https://github.com/containers/container-selinux/releases/tag/v2.132.0
- Related: RHELPLAN-39206
[2:2.131.0-1]
- update to https://github.com/containers/container-selinux/releases/tag/v2.131.0
- Related: RHELPLAN-39206
[2:2.130.0-1]
- update to https://github.com/containers/container-selinux/releases/tag/v2.130.0
- dont use macros in changelog
- Related: #1821204
criu
[3.14-2]
- fix 'Need to fix bugs found by coverity.'
- Resolves: #1838991
[3.14-1]
- update to https://github.com/checkpoint-restore/criu/releases/tag/v3.14
- Related: RHELPLAN-39206
[3.13-1]
- update to 3.13
- Related: RHELPLAN-39206
fuse-overlayfs
[1.0.0-2]
- remove bogus Provides from spec
- Related: RHELPLAN-39206
[1.0.0-1]
- update to https://github.com/containers/fuse-overlayfs/releases/tag/v1.0.0
- Related: RHELPLAN-39206
libslirp
[4.3.0-3]
- fix static analysis issues merged upstream
(https://gitlab.freedesktop.org/slirp/libslirp/-/merge_requests/41)
- Related: #1823657
[4.3.0-2]
- initial libslirp build for container-tools 8.2.1 module
- Resolves: #1823657
[4.3.0-1]
- New v4.3.0 release
podman
[1.9.3-2.0.1]
- delivering fix for [Orabug: 29874238] by Nikita Gerasimov nikita.gerasimov@oracle.com
[1.9.3-2]
- fix 'Signature verification incorrectly uses mirrors references'
- Resolves: #1829061
[1.9.3-1]
- update to https://github.com/containers/libpod/releases/tag/v1.9.3
- Related: RHELPLAN-39206
[1.9.2-3]
- fix 'Podman support for FIPS Mode requires a bind mount inside the container'
- version the oci-systemd-hook obsolete
- Related: #1784950
- Related: #1836180
[1.9.2-2]
- obsolete oci-systemd-hook package
- Resolves: #1836180
[1.9.2-1]
- update to https://github.com/containers/libpod/releases/tag/v1.9.2
- Related: RHELPLAN-39206
[1.9.1-2]
- make container-selinux a soft dependency
- Related: #1806044
[1.9.1-1]
- update to https://github.com/containers/libpod/releases/tag/v1.9.1
- Related: RHELPLAN-39206
[1.9.0-2]
- remove containers-mounts.conf man page, this is shipped by skopeo: containers-common subpackage
- Related: RHELPLAN-39206
[1.9.0-1]
- update to https://github.com/containers/libpod/releases/tag/v1.9.0
- Related: RHELPLAN-39206
python-podman-api
[1.2.0-0.2.gitd0a45fe]
- revert update to 1.6.0 due to new python3-pbr dependency which
is not in RHEL
- Related: RHELPLAN-25139
[1.2.0-0.1.gitd0a45fe]
- Initial package
runc
[1.0.0-66.rc10]
- drop container-selinux runtime dependency
- Related: #1806044
[1.0.0-65.rc10]
- address CVE-2019-19921 by updating to rc10
- Resolves: #1801887
[1.0.0-64.rc9]
- use no_openssl in BUILDTAGS (no vendored crypto in runc)
- Related: RHELPLAN-25139
[1.0.0-63.rc9]
- be sure to use golang >= 1.12.12-4
- Related: RHELPLAN-25139
[1.0.0-62.rc9]
- rebuild because of CVE-2019-9512 and CVE-2019-9514
- Resolves: #1766331, #1766303
[1.0.0-61.rc9]
- update to runc 1.0.0-rc9 release
- amend golang deps
- fixes CVE-2019-16884
- Resolves: #1759651
[1.0.0-60.rc8]
- Resolves: #1721247 - enable fips mode
[1.0.0-59.rc8]
- Resolves: #1720654 - rebase to v1.0.0-rc8
[1.0.0-57.rc5.dev.git2abd837]
- Resolves: #1693424 - podman rootless: cannot specify gid= mount options
[1.0.0-56.rc5.dev.git2abd837]
- change-default-root patch not needed as theres no docker on rhel8
[1.0.0-55.rc5.dev.git2abd837]
- Resolves: CVE-2019-5736
[1.0.0-54.rc5.dev.git2abd837]
- re-enable debuginfo
[1.0.0-53.rc5.dev.git2abd837]
- go toolset not in scl anymore
[1.0.0-52.rc5.dev.git2abd837]
- rebase
skopeo
[1:1.0.0-1.0.1]
- Add oracle registry into the conf file [Orabug: 29845934 31306708]
- Fix oracle registry login issues [Orabug: 29937192]
[1:1.0.0-1]
- update to https://github.com/containers/skopeo/releases/tag/v1.0.0
- Related: RHELPLAN-39206
[1:0.2.0-5]
- follow Dans suggestion to deliver seccomp.json and storage.conf
from Fedora and not directly from upstream yet
- Related: RHELPLAN-39206
[1:0.2.0-4]
- re-include ppc64 arch, golang doesnt seem broken there any more
- synchronize man pages and config files with upstream
- Related: RHELPLAN-39206
[1:0.2.0-3]
- include and ship containers.conf
- Resolves: #1826486
[1:0.2.0-2]
- add docker.io into the default registry list
- Related: RHELPLAN-39206
[1:0.2.0-1]
- update to https://github.com/containers/skopeo/releases/tag/v0.2.0
- initial rhel8-8.2.1 build
- Related: RHELPLAN-39206
slirp4netns
[1.0.1-1]
- update to https://github.com/rootless-containers/slirp4netns/archive/v1.0.1.tar.gz
- Related: RHELPLAN-39206
[0.4.3-1]
- update to https://github.com/rootless-containers/slirp4netns/archive/v0.4.3.tar.gz
- Related: RHELPLAN-39206
- ID
- ELSA-2020-3053
- Severity
- moderate
- URL
- https://linux.oracle.com/errata/ELSA-2020-3053.html
- Published
-
2020-08-06T00:00:00
(4 years ago) - Modified
-
2020-08-06T00:00:00
(4 years ago) - Rights
- Copyright 2020 Oracle, Inc.
- Other Advisories
-
-
ALAS-2020-1449
-
ALAS2-2020-1485
-
ALPINE:CVE-2020-1983
-
ALSA-2020:3053
-
ALSA-2020:4676
-
DSA-4665-1
-
ELSA-2020-4079
-
FEDORA-2020-1608d52724
-
FEDORA-2020-30c45be10c
-
openSUSE-SU-2020:0636-1
-
openSUSE-SU-2020:0756-1
-
RHSA-2020:3053
-
RHSA-2020:4079
-
RHSA-2020:4676
-
RHSA-2021:0346
-
RLSA-2020:3053
-
RLSA-2020:4676
-
SUSE-SU-2020:1197-1
-
SUSE-SU-2020:1501-1
-
SUSE-SU-2020:1502-1
-
SUSE-SU-2020:1514-1
-
SUSE-SU-2020:1516-1
-
SUSE-SU-2020:1523-1
-
SUSE-SU-2020:1526-1
-
SUSE-SU-2020:1538-1
-
USN-4372-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2020-3053 |
|
|
| CVE | CVE-2020-1983 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/udica?distro=oraclelinux-8.2 | oraclelinux |
 udica
|
< 0.2.1-2.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/slirp4netns?distro=oraclelinux-8.2 | oraclelinux |
slirp4netns
|
< 1.0.1-1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/skopeo?distro=oraclelinux-8.2 | oraclelinux |
skopeo
|
< 1.0.0-1.0.1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/skopeo-tests?distro=oraclelinux-8.2 | oraclelinux |
skopeo-tests
|
< 1.0.0-1.0.1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/runc?distro=oraclelinux-8.2 | oraclelinux |
runc
|
< 1.0.0-66.rc10.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/python3-criu?distro=oraclelinux-8.2 | oraclelinux |
python3-criu
|
< 3.14-2.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/python-podman-api?distro=oraclelinux-8.2 | oraclelinux |
python-podman-api
|
< 1.2.0-0.2.gitd0a45fe.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/podman?distro=oraclelinux-8.2 | oraclelinux |
podman
|
< 1.9.3-2.0.1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/podman-tests?distro=oraclelinux-8.2 | oraclelinux |
podman-tests
|
< 1.9.3-2.0.1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/podman-remote?distro=oraclelinux-8.2 | oraclelinux |
podman-remote
|
< 1.9.3-2.0.1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/podman-docker?distro=oraclelinux-8.2 | oraclelinux |
podman-docker
|
< 1.9.3-2.0.1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/libslirp?distro=oraclelinux-8.2 | oraclelinux |
libslirp
|
< 4.3.0-3.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/libslirp-devel?distro=oraclelinux-8.2 | oraclelinux |
libslirp-devel
|
< 4.3.0-3.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/fuse-overlayfs?distro=oraclelinux-8.2 | oraclelinux |
fuse-overlayfs
|
< 1.0.0-2.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/criu?distro=oraclelinux-8.2 | oraclelinux |
criu
|
< 3.14-2.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/crit?distro=oraclelinux-8.2 | oraclelinux |
crit
|
< 3.14-2.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/containers-common?distro=oraclelinux-8.2 | oraclelinux |
containers-common
|
< 1.0.0-1.0.1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/containernetworking-plugins?distro=oraclelinux-8.2 | oraclelinux |
containernetworking-plugins
|
< 0.8.6-1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/container-selinux?distro=oraclelinux-8.2 | oraclelinux |
container-selinux
|
< 2.135.0-1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/conmon?distro=oraclelinux-8.2 | oraclelinux |
conmon
|
< 2.0.17-1.0.1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/cockpit-podman?distro=oraclelinux-8.2 | oraclelinux |
cockpit-podman
|
< 17-1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/buildah?distro=oraclelinux-8.2 | oraclelinux |
buildah
|
< 1.14.9-1.0.1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 | ||
| Affected | pkg:rpm/oraclelinux/buildah-tests?distro=oraclelinux-8.2 | oraclelinux |
buildah-tests
|
< 1.14.9-1.0.1.module+el8.2.1+7658+86e51d52 | oraclelinux-8.2 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |