[RHSA-2019:3494] container-tools:1.0 security and bug fix update
Severity
Important
Affected Packages
42
CVEs
2
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
Security Fix(es):
QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)
containers/image: not enforcing TLS when sending username+password credentials to token servers leading to credential disclosure (CVE-2019-10214)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.1 Release Notes linked from the References section.
- ID
- RHSA-2019:3494
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2019:3494
- Published
-
2019-11-05T00:00:00
(4 years ago) - Modified
-
2019-11-05T00:00:00
(4 years ago) - Rights
- Copyright 2019 Red Hat, Inc.
- Other Advisories
-
-
ALAS-2020-1449
-
ALAS2-2020-1401
-
ALSA-2019:3403
-
ALSA-2019:3494
-
DSA-4506-1
-
DSA-4512-1
-
ELSA-2020-0366
-
ELSA-2020-0775
-
ELSA-2020-5576
-
FEDORA-2019-77bafc4454
-
GO-2021-0081
-
openSUSE-SU-2019:2041-1
-
openSUSE-SU-2019:2059-1
-
openSUSE-SU-2019:2137-1
-
openSUSE-SU-2019:2138-1
-
openSUSE-SU-2019:2143-1
-
openSUSE-SU-2019:2159-1
-
openSUSE-SU-2019:2510-1
-
openSUSE-SU-2020:0377-1
-
openSUSE-SU-2020:0554-1
-
openSUSE-SU-2020:2106-1
-
openSUSE-SU-2021:0310-1
-
openSUSE-SU-2022:0770-1
-
RHBA-2019:2715
-
RHSA-2019:3403
-
RHSA-2019:3968
-
RHSA-2020:0366
-
RHSA-2020:0775
-
RLSA-2019:3403
-
RLSA-2019:3494
-
SUSE-SU-2019:2157-1
-
SUSE-SU-2019:2192-1
-
SUSE-SU-2019:2221-1
-
SUSE-SU-2019:2246-1
-
SUSE-SU-2019:2340-1
-
SUSE-SU-2019:2341-1
-
SUSE-SU-2019:2346-1
-
SUSE-SU-2019:2353-1
-
SUSE-SU-2019:2753-1
-
SUSE-SU-2019:2769-1
-
SUSE-SU-2019:2783-1
-
SUSE-SU-2019:2955-1
-
SUSE-SU-2020:0388-1
-
SUSE-SU-2020:0712-1
-
SUSE-SU-2020:3423-1
-
SUSE-SU-2022:0770-1
-
USN-4191-1
-
USN-4191-2
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Bugzilla | 1732508 |
|
|
| Bugzilla | 1734745 |
|
|
| RHSA | RHSA-2019:3494 |
|
|
| CVE | CVE-2019-10214 |
|
|
| CVE | CVE-2019-14378 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/redhat/slirp4netns?arch=x86_64&distro=redhat-8.1 | redhat |
 slirp4netns
|
< 0.1-3.dev.gitc4e1bc5.module+el8.1.0+4308+9d868e48 | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/slirp4netns?arch=s390x&distro=redhat-8.1 | redhat |
slirp4netns
|
< 0.1-3.dev.gitc4e1bc5.module+el8.1.0+4308+9d868e48 | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/slirp4netns?arch=ppc64le&distro=redhat-8.1 | redhat |
slirp4netns
|
< 0.1-3.dev.gitc4e1bc5.module+el8.1.0+4308+9d868e48 | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/slirp4netns?arch=aarch64&distro=redhat-8.1 | redhat |
slirp4netns
|
< 0.1-3.dev.gitc4e1bc5.module+el8.1.0+4308+9d868e48 | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/skopeo?arch=x86_64&distro=redhat-8.1 | redhat |
skopeo
|
< 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/skopeo?arch=s390x&distro=redhat-8.1 | redhat |
skopeo
|
< 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/skopeo?arch=ppc64le&distro=redhat-8.1 | redhat |
skopeo
|
< 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/skopeo?arch=aarch64&distro=redhat-8.1 | redhat |
skopeo
|
< 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/runc?arch=x86_64&distro=redhat-8.1 | redhat |
runc
|
< 1.0.0-55.rc5.dev.git2abd837.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/runc?arch=s390x&distro=redhat-8.1 | redhat |
runc
|
< 1.0.0-55.rc5.dev.git2abd837.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/runc?arch=ppc64le&distro=redhat-8.1 | redhat |
runc
|
< 1.0.0-55.rc5.dev.git2abd837.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/runc?arch=aarch64&distro=redhat-8.1 | redhat |
runc
|
< 1.0.0-55.rc5.dev.git2abd837.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/podman?arch=x86_64&distro=redhat-8.1 | redhat |
podman
|
< 1.0.0-3.git921f98f.module+el8.1.0+4241+a7060183 | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/podman?arch=s390x&distro=redhat-8.1 | redhat |
podman
|
< 1.0.0-3.git921f98f.module+el8.1.0+4241+a7060183 | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/podman?arch=ppc64le&distro=redhat-8.1 | redhat |
podman
|
< 1.0.0-3.git921f98f.module+el8.1.0+4241+a7060183 | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/podman?arch=aarch64&distro=redhat-8.1 | redhat |
podman
|
< 1.0.0-3.git921f98f.module+el8.1.0+4241+a7060183 | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/podman-docker?distro=redhat-8.1 | redhat |
podman-docker
|
< 1.0.0-3.git921f98f.module+el8.1.0+4241+a7060183 | redhat-8.1 | ||
| Affected | pkg:rpm/redhat/oci-umount?arch=x86_64&distro=redhat-8.1 | redhat |
oci-umount
|
< 2.3.4-2.git87f9237.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/oci-umount?arch=s390x&distro=redhat-8.1 | redhat |
oci-umount
|
< 2.3.4-2.git87f9237.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/oci-umount?arch=ppc64le&distro=redhat-8.1 | redhat |
oci-umount
|
< 2.3.4-2.git87f9237.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/oci-umount?arch=aarch64&distro=redhat-8.1 | redhat |
oci-umount
|
< 2.3.4-2.git87f9237.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/oci-systemd-hook?arch=x86_64&distro=redhat-8.1 | redhat |
oci-systemd-hook
|
< 0.1.15-2.git2d0b8a3.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/oci-systemd-hook?arch=s390x&distro=redhat-8.1 | redhat |
oci-systemd-hook
|
< 0.1.15-2.git2d0b8a3.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/oci-systemd-hook?arch=ppc64le&distro=redhat-8.1 | redhat |
oci-systemd-hook
|
< 0.1.15-2.git2d0b8a3.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/oci-systemd-hook?arch=aarch64&distro=redhat-8.1 | redhat |
oci-systemd-hook
|
< 0.1.15-2.git2d0b8a3.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/fuse-overlayfs?arch=x86_64&distro=redhat-8.1 | redhat |
fuse-overlayfs
|
< 0.3-5.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/fuse-overlayfs?arch=s390x&distro=redhat-8.1 | redhat |
fuse-overlayfs
|
< 0.3-5.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/fuse-overlayfs?arch=ppc64le&distro=redhat-8.1 | redhat |
fuse-overlayfs
|
< 0.3-5.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/fuse-overlayfs?arch=aarch64&distro=redhat-8.1 | redhat |
fuse-overlayfs
|
< 0.3-5.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/containers-common?arch=x86_64&distro=redhat-8.1 | redhat |
containers-common
|
< 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/containers-common?arch=s390x&distro=redhat-8.1 | redhat |
containers-common
|
< 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/containers-common?arch=ppc64le&distro=redhat-8.1 | redhat |
containers-common
|
< 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/containers-common?arch=aarch64&distro=redhat-8.1 | redhat |
containers-common
|
< 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/containernetworking-plugins?arch=x86_64&distro=redhat-8.1 | redhat |
containernetworking-plugins
|
< 0.7.4-3.git9ebe139.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/containernetworking-plugins?arch=s390x&distro=redhat-8.1 | redhat |
containernetworking-plugins
|
< 0.7.4-3.git9ebe139.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/containernetworking-plugins?arch=ppc64le&distro=redhat-8.1 | redhat |
containernetworking-plugins
|
< 0.7.4-3.git9ebe139.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/containernetworking-plugins?arch=aarch64&distro=redhat-8.1 | redhat |
containernetworking-plugins
|
< 0.7.4-3.git9ebe139.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/container-selinux?distro=redhat-8.1 | redhat |
container-selinux
|
< 2.94-1.git1e99f1d.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ||
| Affected | pkg:rpm/redhat/buildah?arch=x86_64&distro=redhat-8.1 | redhat |
buildah
|
< 1.5-5.gite94b4f9.module+el8.1.0+4241+a7060183 | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/buildah?arch=s390x&distro=redhat-8.1 | redhat |
buildah
|
< 1.5-5.gite94b4f9.module+el8.1.0+4241+a7060183 | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/buildah?arch=ppc64le&distro=redhat-8.1 | redhat |
buildah
|
< 1.5-5.gite94b4f9.module+el8.1.0+4241+a7060183 | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/buildah?arch=aarch64&distro=redhat-8.1 | redhat |
buildah
|
< 1.5-5.gite94b4f9.module+el8.1.0+4241+a7060183 | redhat-8.1 | aarch64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |