[RHSA-2019:3494] container-tools:1.0 security and bug fix update
Severity
Important
Affected Packages
42
CVEs
2
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
Security Fix(es):
QEMU: slirp: heap buffer overflow during packet reassembly (CVE-2019-14378)
containers/image: not enforcing TLS when sending username+password credentials to token servers leading to credential disclosure (CVE-2019-10214)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.1 Release Notes linked from the References section.
- ID
- RHSA-2019:3494
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2019:3494
- Published
-
2019-11-05T00:00:00
(4 years ago) - Modified
-
2019-11-05T00:00:00
(4 years ago) - Rights
- Copyright 2019 Red Hat, Inc.
- Other Advisories
-
- ALAS-2020-1449
- ALAS2-2020-1401
- ALSA-2019:3403
- ALSA-2019:3494
- DSA-4506-1
- DSA-4512-1
- ELSA-2020-0366
- ELSA-2020-0775
- ELSA-2020-5576
- FEDORA-2019-77bafc4454
- GO-2021-0081
- openSUSE-SU-2019:2041-1
- openSUSE-SU-2019:2059-1
- openSUSE-SU-2019:2137-1
- openSUSE-SU-2019:2138-1
- openSUSE-SU-2019:2143-1
- openSUSE-SU-2019:2159-1
- openSUSE-SU-2019:2510-1
- openSUSE-SU-2020:0377-1
- openSUSE-SU-2020:0554-1
- openSUSE-SU-2020:2106-1
- openSUSE-SU-2021:0310-1
- openSUSE-SU-2022:0770-1
- RHBA-2019:2715
- RHSA-2019:3403
- RHSA-2019:3968
- RHSA-2020:0366
- RHSA-2020:0775
- RLSA-2019:3403
- RLSA-2019:3494
- SUSE-SU-2019:2157-1
- SUSE-SU-2019:2192-1
- SUSE-SU-2019:2221-1
- SUSE-SU-2019:2246-1
- SUSE-SU-2019:2340-1
- SUSE-SU-2019:2341-1
- SUSE-SU-2019:2346-1
- SUSE-SU-2019:2353-1
- SUSE-SU-2019:2753-1
- SUSE-SU-2019:2769-1
- SUSE-SU-2019:2783-1
- SUSE-SU-2019:2955-1
- SUSE-SU-2020:0388-1
- SUSE-SU-2020:0712-1
- SUSE-SU-2020:3423-1
- SUSE-SU-2022:0770-1
- USN-4191-1
- USN-4191-2
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 1732508 | https://bugzilla.redhat.com/1732508 | |
Bugzilla | 1734745 | https://bugzilla.redhat.com/1734745 | |
RHSA | RHSA-2019:3494 | https://access.redhat.com/errata/RHSA-2019:3494 | |
CVE | CVE-2019-10214 | https://access.redhat.com/security/cve/CVE-2019-10214 | |
CVE | CVE-2019-14378 | https://access.redhat.com/security/cve/CVE-2019-14378 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/redhat/slirp4netns?arch=x86_64&distro=redhat-8.1 | redhat | slirp4netns | < 0.1-3.dev.gitc4e1bc5.module+el8.1.0+4308+9d868e48 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/slirp4netns?arch=s390x&distro=redhat-8.1 | redhat | slirp4netns | < 0.1-3.dev.gitc4e1bc5.module+el8.1.0+4308+9d868e48 | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/slirp4netns?arch=ppc64le&distro=redhat-8.1 | redhat | slirp4netns | < 0.1-3.dev.gitc4e1bc5.module+el8.1.0+4308+9d868e48 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/slirp4netns?arch=aarch64&distro=redhat-8.1 | redhat | slirp4netns | < 0.1-3.dev.gitc4e1bc5.module+el8.1.0+4308+9d868e48 | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/skopeo?arch=x86_64&distro=redhat-8.1 | redhat | skopeo | < 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/skopeo?arch=s390x&distro=redhat-8.1 | redhat | skopeo | < 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/skopeo?arch=ppc64le&distro=redhat-8.1 | redhat | skopeo | < 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/skopeo?arch=aarch64&distro=redhat-8.1 | redhat | skopeo | < 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/runc?arch=x86_64&distro=redhat-8.1 | redhat | runc | < 1.0.0-55.rc5.dev.git2abd837.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/runc?arch=s390x&distro=redhat-8.1 | redhat | runc | < 1.0.0-55.rc5.dev.git2abd837.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/runc?arch=ppc64le&distro=redhat-8.1 | redhat | runc | < 1.0.0-55.rc5.dev.git2abd837.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/runc?arch=aarch64&distro=redhat-8.1 | redhat | runc | < 1.0.0-55.rc5.dev.git2abd837.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/podman?arch=x86_64&distro=redhat-8.1 | redhat | podman | < 1.0.0-3.git921f98f.module+el8.1.0+4241+a7060183 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/podman?arch=s390x&distro=redhat-8.1 | redhat | podman | < 1.0.0-3.git921f98f.module+el8.1.0+4241+a7060183 | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/podman?arch=ppc64le&distro=redhat-8.1 | redhat | podman | < 1.0.0-3.git921f98f.module+el8.1.0+4241+a7060183 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/podman?arch=aarch64&distro=redhat-8.1 | redhat | podman | < 1.0.0-3.git921f98f.module+el8.1.0+4241+a7060183 | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/podman-docker?distro=redhat-8.1 | redhat | podman-docker | < 1.0.0-3.git921f98f.module+el8.1.0+4241+a7060183 | redhat-8.1 | ||
Affected | pkg:rpm/redhat/oci-umount?arch=x86_64&distro=redhat-8.1 | redhat | oci-umount | < 2.3.4-2.git87f9237.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/oci-umount?arch=s390x&distro=redhat-8.1 | redhat | oci-umount | < 2.3.4-2.git87f9237.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/oci-umount?arch=ppc64le&distro=redhat-8.1 | redhat | oci-umount | < 2.3.4-2.git87f9237.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/oci-umount?arch=aarch64&distro=redhat-8.1 | redhat | oci-umount | < 2.3.4-2.git87f9237.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/oci-systemd-hook?arch=x86_64&distro=redhat-8.1 | redhat | oci-systemd-hook | < 0.1.15-2.git2d0b8a3.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/oci-systemd-hook?arch=s390x&distro=redhat-8.1 | redhat | oci-systemd-hook | < 0.1.15-2.git2d0b8a3.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/oci-systemd-hook?arch=ppc64le&distro=redhat-8.1 | redhat | oci-systemd-hook | < 0.1.15-2.git2d0b8a3.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/oci-systemd-hook?arch=aarch64&distro=redhat-8.1 | redhat | oci-systemd-hook | < 0.1.15-2.git2d0b8a3.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/fuse-overlayfs?arch=x86_64&distro=redhat-8.1 | redhat | fuse-overlayfs | < 0.3-5.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/fuse-overlayfs?arch=s390x&distro=redhat-8.1 | redhat | fuse-overlayfs | < 0.3-5.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/fuse-overlayfs?arch=ppc64le&distro=redhat-8.1 | redhat | fuse-overlayfs | < 0.3-5.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/fuse-overlayfs?arch=aarch64&distro=redhat-8.1 | redhat | fuse-overlayfs | < 0.3-5.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/containers-common?arch=x86_64&distro=redhat-8.1 | redhat | containers-common | < 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/containers-common?arch=s390x&distro=redhat-8.1 | redhat | containers-common | < 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/containers-common?arch=ppc64le&distro=redhat-8.1 | redhat | containers-common | < 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/containers-common?arch=aarch64&distro=redhat-8.1 | redhat | containers-common | < 0.1.32-5.git1715c90.module+el8.1.0+4241+a7060183 | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/containernetworking-plugins?arch=x86_64&distro=redhat-8.1 | redhat | containernetworking-plugins | < 0.7.4-3.git9ebe139.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/containernetworking-plugins?arch=s390x&distro=redhat-8.1 | redhat | containernetworking-plugins | < 0.7.4-3.git9ebe139.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/containernetworking-plugins?arch=ppc64le&distro=redhat-8.1 | redhat | containernetworking-plugins | < 0.7.4-3.git9ebe139.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/containernetworking-plugins?arch=aarch64&distro=redhat-8.1 | redhat | containernetworking-plugins | < 0.7.4-3.git9ebe139.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/container-selinux?distro=redhat-8.1 | redhat | container-selinux | < 2.94-1.git1e99f1d.module+el8.1.0+3468+011f0ab0 | redhat-8.1 | ||
Affected | pkg:rpm/redhat/buildah?arch=x86_64&distro=redhat-8.1 | redhat | buildah | < 1.5-5.gite94b4f9.module+el8.1.0+4241+a7060183 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/buildah?arch=s390x&distro=redhat-8.1 | redhat | buildah | < 1.5-5.gite94b4f9.module+el8.1.0+4241+a7060183 | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/buildah?arch=ppc64le&distro=redhat-8.1 | redhat | buildah | < 1.5-5.gite94b4f9.module+el8.1.0+4241+a7060183 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/buildah?arch=aarch64&distro=redhat-8.1 | redhat | buildah | < 1.5-5.gite94b4f9.module+el8.1.0+4241+a7060183 | redhat-8.1 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |