[RHSA-2024:0670] runc security update
Severity
Important
Affected Packages
4
CVEs
1
The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides container runtime.
Security Fix(es):
- runc: file descriptor leak (CVE-2024-21626)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Package | Affected Version |
---|---|
pkg:rpm/redhat/runc?arch=x86_64&distro=redhat-9.3 | < 1.1.12-1.el9_3 |
pkg:rpm/redhat/runc?arch=s390x&distro=redhat-9.3 | < 1.1.12-1.el9_3 |
pkg:rpm/redhat/runc?arch=ppc64le&distro=redhat-9.3 | < 1.1.12-1.el9_3 |
pkg:rpm/redhat/runc?arch=aarch64&distro=redhat-9.3 | < 1.1.12-1.el9_3 |
- ID
- RHSA-2024:0670
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2024:0670
- Published
-
2024-02-02T00:00:00
(7 months ago) - Modified
-
2024-02-02T00:00:00
(7 months ago) - Rights
- Copyright 2024 Red Hat, Inc.
- Other Advisories
-
- ALAS-2024-1911
- ALPINE:CVE-2024-21626
- ALSA-2024:0670
- ALSA-2024:0748
- ALSA-2024:0752
- DSA-5615-1
- ELSA-2024-0670
- ELSA-2024-0748
- ELSA-2024-0752
- ELSA-2024-12148
- ELSA-2024-17931
- FEDORA-2024-900dc7f6ff
- FEDORA-2024-9044c9eefa
- GLSA-202408-25
- GO-2024-2491
- MS:CVE-2024-21626
- RHSA-2024:0748
- RHSA-2024:0752
- SUSE-SU-2024:0294-1
- SUSE-SU-2024:0295-1
- SUSE-SU-2024:0328-1
- SUSE-SU-2024:0459-1
- USN-6619-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 2258725 | https://bugzilla.redhat.com/2258725 | |
RHSA | RHSA-2024:0670 | https://access.redhat.com/errata/RHSA-2024:0670 | |
CVE | CVE-2024-21626 | https://access.redhat.com/security/cve/CVE-2024-21626 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/redhat/runc?arch=x86_64&distro=redhat-9.3 | redhat | runc | < 1.1.12-1.el9_3 | redhat-9.3 | x86_64 | |
Affected | pkg:rpm/redhat/runc?arch=s390x&distro=redhat-9.3 | redhat | runc | < 1.1.12-1.el9_3 | redhat-9.3 | s390x | |
Affected | pkg:rpm/redhat/runc?arch=ppc64le&distro=redhat-9.3 | redhat | runc | < 1.1.12-1.el9_3 | redhat-9.3 | ppc64le | |
Affected | pkg:rpm/redhat/runc?arch=aarch64&distro=redhat-9.3 | redhat | runc | < 1.1.12-1.el9_3 | redhat-9.3 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |