[ELSA-2024-4246] container-tools security update
aardvark-dns
[2:1.10.0-1]
- update to https://github.com/containers/aardvark-dns/releases/tag/v1.10.0
- Related: Jira:RHEL-2110
[2:1.9.0-1]
- update to https://github.com/containers/aardvark-dns/releases/tag/v1.9.0
- Related: Jira:RHEL-2110
[2:1.8.0-1]
- update to https://github.com/containers/aardvark-dns/releases/tag/v1.8.0
- Related: Jira:RHEL-2110
buildah
[2:1.33.8-1]
- update to the latest content of https://github.com/containers/buildah/tree/release-1.33
(https://github.com/containers/buildah/commit/b65a814)
- Resolves: RHEL-40850
cockpit-podman
conmon
containernetworking-plugins
containers-common
container-selinux
criu
[3.18-5]
- rebuild to preserve upgrade path
- Related: RHEL-32671
crun
fuse-overlayfs
libslirp
[4.4.0-2]
- rebuild to preserve upgrade path 8.9 -> 8.10
- Related: RHEL-32671
netavark
oci-seccomp-bpf-hook
podman
[4.9.4-4.0.1]
- Add devices on container startup, not on creation
[4:4.9.4-4]
- update to the latest content of https://github.com/containers/podman/tree/v4.9-rhel
(https://github.com/containers/podman/commit/1a6dca2)
- Resolves: RHEL-40851
python-podman
runc
skopeo
[2:1.14.4-1]
- update to the latest content of https://github.com/containers/skopeo/tree/release-1.14
(https://github.com/containers/skopeo/commit/78d9c9a)
- Resolves: RHEL-40852
slirp4netns
udica
[0.2.6-21]
- bump release to preserve update path
- Resolves: RHEL-32671
[0.2.6-20]
- bump release to preserve update path
- Related: #2139052
- ID
- ELSA-2024-4246
- Severity
- moderate
- URL
- https://linux.oracle.com/errata/ELSA-2024-4246.html
- Published
-
2024-07-03T00:00:00
(2 months ago) - Modified
-
2024-07-03T00:00:00
(2 months ago) - Rights
- Copyright 2024 Oracle, Inc.
- Other Advisories
-
- ALAS2-2024-2550
- ALAS2-2024-2568
- ALAS2-2024-2618
- ALPINE:CVE-2024-24786
- ALSA-2024:2548
- ALSA-2024:2549
- ALSA-2024:2550
- ALSA-2024:3254
- ALSA-2024:4246
- ELSA-2024-12328
- ELSA-2024-12329
- ELSA-2024-12347
- ELSA-2024-12348
- ELSA-2024-2548
- ELSA-2024-2549
- ELSA-2024-2550
- ELSA-2024-3254
- FEDORA-2024-5bae6c0ea7
- GLSA-202407-12
- GLSA-202407-25
- GO-2024-2611
- RHSA-2024:1874
- RHSA-2024:2548
- RHSA-2024:2549
- RHSA-2024:2550
- RHSA-2024:3254
- RHSA-2024:4246
- RLSA-2024:2548
- RLSA-2024:2549
- RLSA-2024:2550
- SUSE-SU-2024:2031-1
- SUSE-SU-2024:2050-1
- SUSE-SU-2024:2050-2
- SUSE-SU-2024:2090-1
- SUSE-SU-2024:3094-1
- SUSE-SU-2024:3097-1
- SUSE-SU-2024:3098-1
- SUSE-SU-2024:3120-1
- USN-6746-1
- USN-6746-2
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2024-4246 | https://linux.oracle.com/errata/ELSA-2024-4246.html | |
CVE | CVE-2024-24786 | https://linux.oracle.com/cve/CVE-2024-24786.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/udica?distro=oraclelinux-8.1 | oraclelinux | udica | < 0.2.6-21.module+el8.10.0+90337+0d7b6e74 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/slirp4netns?distro=oraclelinux-8.1 | oraclelinux | slirp4netns | < 1.2.3-1.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/skopeo?distro=oraclelinux-8.1 | oraclelinux | skopeo | < 1.14.4-1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/skopeo-tests?distro=oraclelinux-8.1 | oraclelinux | skopeo-tests | < 1.14.4-1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/runc?distro=oraclelinux-8.1 | oraclelinux | runc | < 1.1.12-1.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/python3-podman?distro=oraclelinux-8.1 | oraclelinux | python3-podman | < 4.9.0-1.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/python3-criu?distro=oraclelinux-8.1 | oraclelinux | python3-criu | < 3.18-5.module+el8.10.0+90337+0d7b6e74 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/podman?distro=oraclelinux-8.1 | oraclelinux | podman | < 4.9.4-4.0.1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/podman-tests?distro=oraclelinux-8.1 | oraclelinux | podman-tests | < 4.9.4-4.0.1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/podman-remote?distro=oraclelinux-8.1 | oraclelinux | podman-remote | < 4.9.4-4.0.1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/podman-plugins?distro=oraclelinux-8.1 | oraclelinux | podman-plugins | < 4.9.4-4.0.1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/podman-gvproxy?distro=oraclelinux-8.1 | oraclelinux | podman-gvproxy | < 4.9.4-4.0.1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/podman-docker?distro=oraclelinux-8.1 | oraclelinux | podman-docker | < 4.9.4-4.0.1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/podman-catatonit?distro=oraclelinux-8.1 | oraclelinux | podman-catatonit | < 4.9.4-4.0.1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/oci-seccomp-bpf-hook?distro=oraclelinux-8.1 | oraclelinux | oci-seccomp-bpf-hook | < 1.2.10-1.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/netavark?distro=oraclelinux-8.1 | oraclelinux | netavark | < 1.10.3-1.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/libslirp?distro=oraclelinux-8.1 | oraclelinux | libslirp | < 4.4.0-2.module+el8.10.0+90337+0d7b6e74 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/libslirp-devel?distro=oraclelinux-8.1 | oraclelinux | libslirp-devel | < 4.4.0-2.module+el8.10.0+90337+0d7b6e74 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/fuse-overlayfs?distro=oraclelinux-8.1 | oraclelinux | fuse-overlayfs | < 1.13-1.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/crun?distro=oraclelinux-8.1 | oraclelinux | crun | < 1.14.3-2.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/criu?distro=oraclelinux-8.1 | oraclelinux | criu | < 3.18-5.module+el8.10.0+90337+0d7b6e74 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/criu-libs?distro=oraclelinux-8.1 | oraclelinux | criu-libs | < 3.18-5.module+el8.10.0+90337+0d7b6e74 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/criu-devel?distro=oraclelinux-8.1 | oraclelinux | criu-devel | < 3.18-5.module+el8.10.0+90337+0d7b6e74 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/crit?distro=oraclelinux-8.1 | oraclelinux | crit | < 3.18-5.module+el8.10.0+90337+0d7b6e74 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/containers-common?distro=oraclelinux-8.1 | oraclelinux | containers-common | < 1-81.0.1.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/containernetworking-plugins?distro=oraclelinux-8.1 | oraclelinux | containernetworking-plugins | < 1.4.0-2.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/container-selinux?distro=oraclelinux-8.1 | oraclelinux | container-selinux | < 2.229.0-2.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/conmon?distro=oraclelinux-8.1 | oraclelinux | conmon | < 2.1.10-1.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/cockpit-podman?distro=oraclelinux-8.1 | oraclelinux | cockpit-podman | < 84.1-1.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/buildah?distro=oraclelinux-8.1 | oraclelinux | buildah | < 1.33.8-1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/buildah-tests?distro=oraclelinux-8.1 | oraclelinux | buildah-tests | < 1.33.8-1.module+el8.10.0+90360+0c35d233 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/aardvark-dns?distro=oraclelinux-8.1 | oraclelinux | aardvark-dns | < 1.10.0-1.module+el8.10.0+90298+77a9814d | oraclelinux-8.1 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |