Sigurnosni nedostaci programskog paketa container-tools

Detalji os-a: WN7
Važnost: IMP
Operativni sustavi: L
Kategorije: LRH

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: container-tools:1.0 security and bug fix update
Advisory ID: RHSA-2020:1926-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2020:1926
Issue date: 2020-04-28
CVE Names: CVE-2020-10696
=====================================================================

1. Summary:

An update for the container-tools:1.0 module is now available for Red Hat
Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) – aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The container-tools module contains tools for working with containers,
notably podman, buildah, skopeo, and runc.

Security Fix(es):

* buildah: Crafted input tar file may lead to local file overwrite during
image build process (CVE-2020-10696)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Bug Fix(es):

* conflicting requests: failed to install container-tools:1.0 (BZ#1813776)

* podman run container error with avc denied (BZ#1816541)

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1776313 – create advisory for container-tools-1.0-8.2.0
1813776 – conflicting requests: failed to install container-tools:1.0
1816541 – podman run container error with avc denied
1817651 – CVE-2020-10696 buildah: Crafted input tar file may lead to local file overwrite during image build process

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:
buildah-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.src.rpm
container-selinux-2.124.0-1.gitf958d0c.module+el8.2.0+6370+6fb6c8ca.src.rpm
containernetworking-plugins-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.src.rpm
criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.src.rpm
fuse-overlayfs-0.3-5.module+el8.2.0+6370+6fb6c8ca.src.rpm
oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.src.rpm
oci-umount-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.src.rpm
podman-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.src.rpm
runc-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.src.rpm
skopeo-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.src.rpm
slirp4netns-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.src.rpm

aarch64:
buildah-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
buildah-debuginfo-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
buildah-debugsource-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
containernetworking-plugins-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
containernetworking-plugins-debuginfo-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
containernetworking-plugins-debugsource-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
containers-common-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
crit-3.12-9.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
criu-debugsource-3.12-9.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
fuse-overlayfs-0.3-5.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
fuse-overlayfs-debuginfo-0.3-5.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
fuse-overlayfs-debugsource-0.3-5.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
oci-systemd-hook-debuginfo-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
oci-systemd-hook-debugsource-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
oci-umount-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
oci-umount-debuginfo-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
oci-umount-debugsource-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
podman-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
podman-debuginfo-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
podman-debugsource-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
python3-criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
runc-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
runc-debuginfo-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
runc-debugsource-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
skopeo-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
skopeo-debuginfo-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
skopeo-debugsource-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
slirp4netns-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
slirp4netns-debuginfo-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm
slirp4netns-debugsource-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.aarch64.rpm

noarch:
container-selinux-2.124.0-1.gitf958d0c.module+el8.2.0+6370+6fb6c8ca.noarch.rpm
podman-docker-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.noarch.rpm

ppc64le:
buildah-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
buildah-debuginfo-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
buildah-debugsource-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
containernetworking-plugins-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
containernetworking-plugins-debuginfo-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
containernetworking-plugins-debugsource-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
containers-common-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
crit-3.12-9.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
criu-debugsource-3.12-9.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
fuse-overlayfs-0.3-5.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
fuse-overlayfs-debuginfo-0.3-5.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
fuse-overlayfs-debugsource-0.3-5.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
oci-systemd-hook-debuginfo-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
oci-systemd-hook-debugsource-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
oci-umount-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
oci-umount-debuginfo-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
oci-umount-debugsource-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
podman-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
podman-debuginfo-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
podman-debugsource-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
python3-criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
runc-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
runc-debuginfo-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
runc-debugsource-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
skopeo-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
skopeo-debuginfo-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
skopeo-debugsource-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
slirp4netns-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
slirp4netns-debuginfo-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm
slirp4netns-debugsource-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.ppc64le.rpm

s390x:
buildah-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
buildah-debuginfo-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
buildah-debugsource-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
containernetworking-plugins-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
containernetworking-plugins-debuginfo-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
containernetworking-plugins-debugsource-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
containers-common-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
crit-3.12-9.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
criu-debugsource-3.12-9.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
fuse-overlayfs-0.3-5.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
fuse-overlayfs-debuginfo-0.3-5.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
fuse-overlayfs-debugsource-0.3-5.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
oci-systemd-hook-debuginfo-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
oci-systemd-hook-debugsource-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
oci-umount-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
oci-umount-debuginfo-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
oci-umount-debugsource-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
podman-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
podman-debuginfo-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
podman-debugsource-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
python3-criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
runc-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
runc-debuginfo-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
runc-debugsource-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
skopeo-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
skopeo-debuginfo-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
skopeo-debugsource-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
slirp4netns-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
slirp4netns-debuginfo-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.s390x.rpm
slirp4netns-debugsource-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.s390x.rpm

x86_64:
buildah-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
buildah-debuginfo-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
buildah-debugsource-1.5-4.gite94b4f9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
containernetworking-plugins-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
containernetworking-plugins-debuginfo-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
containernetworking-plugins-debugsource-0.7.4-3.git9ebe139.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
containers-common-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
crit-3.12-9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
criu-debugsource-3.12-9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
fuse-overlayfs-0.3-5.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
fuse-overlayfs-debuginfo-0.3-5.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
fuse-overlayfs-debugsource-0.3-5.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
oci-systemd-hook-debuginfo-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
oci-systemd-hook-debugsource-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
oci-umount-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
oci-umount-debuginfo-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
oci-umount-debugsource-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
podman-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
podman-debuginfo-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
podman-debugsource-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
python3-criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
runc-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
runc-debuginfo-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
runc-debugsource-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
skopeo-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
skopeo-debuginfo-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
skopeo-debugsource-0.1.32-4.git1715c90.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
slirp4netns-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
slirp4netns-debuginfo-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm
slirp4netns-debugsource-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2020-10696
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
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=mme8
—–END PGP SIGNATURE—–

—
RHSA-announce mailing list
RHSA-announce@redhat.com
https://www.redhat.com/mailman/listinfo/rhsa-announce

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: container-tools:rhel8 security update
Advisory ID: RHSA-2020:1932-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2020:1932
Issue date: 2020-04-28
CVE Names: CVE-2020-10696
=====================================================================

1. Summary:

An update for the container-tools:rhel8 module is now available for Red Hat
Enterprise Linux 8.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) – aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The container-tools module contains tools for working with containers,
notably podman, buildah, skopeo, and runc.

Security Fix(es):

* buildah: Crafted input tar file may lead to local file overwrite during
image build process (CVE-2020-10696)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1817651 – CVE-2020-10696 buildah: Crafted input tar file may lead to local file overwrite during image build process

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:
buildah-1.11.6-8.module+el8.2.0+6368+cf16aa14.src.rpm
cockpit-podman-12-1.module+el8.2.0+6368+cf16aa14.src.rpm
conmon-2.0.6-1.module+el8.2.0+6368+cf16aa14.src.rpm
container-selinux-2.124.0-1.module+el8.2.0+6368+cf16aa14.src.rpm
containernetworking-plugins-0.8.3-5.module+el8.2.0+6368+cf16aa14.src.rpm
criu-3.12-9.module+el8.2.0+6368+cf16aa14.src.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6368+cf16aa14.src.rpm
podman-1.6.4-11.module+el8.2.0+6368+cf16aa14.src.rpm
python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.0+6368+cf16aa14.src.rpm
runc-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.src.rpm
skopeo-0.1.40-11.module+el8.2.0+6374+67f43e89.src.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.src.rpm
toolbox-0.0.7-1.module+el8.2.0+6368+cf16aa14.src.rpm
udica-0.2.1-2.module+el8.2.0+6368+cf16aa14.src.rpm

aarch64:
buildah-1.11.6-8.module+el8.2.0+6368+cf16aa14.aarch64.rpm
buildah-debuginfo-1.11.6-8.module+el8.2.0+6368+cf16aa14.aarch64.rpm
buildah-debugsource-1.11.6-8.module+el8.2.0+6368+cf16aa14.aarch64.rpm
buildah-tests-1.11.6-8.module+el8.2.0+6368+cf16aa14.aarch64.rpm
buildah-tests-debuginfo-1.11.6-8.module+el8.2.0+6368+cf16aa14.aarch64.rpm
conmon-2.0.6-1.module+el8.2.0+6368+cf16aa14.aarch64.rpm
containernetworking-plugins-0.8.3-5.module+el8.2.0+6368+cf16aa14.aarch64.rpm
containernetworking-plugins-debuginfo-0.8.3-5.module+el8.2.0+6368+cf16aa14.aarch64.rpm
containernetworking-plugins-debugsource-0.8.3-5.module+el8.2.0+6368+cf16aa14.aarch64.rpm
containers-common-0.1.40-11.module+el8.2.0+6374+67f43e89.aarch64.rpm
crit-3.12-9.module+el8.2.0+6368+cf16aa14.aarch64.rpm
criu-3.12-9.module+el8.2.0+6368+cf16aa14.aarch64.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6368+cf16aa14.aarch64.rpm
criu-debugsource-3.12-9.module+el8.2.0+6368+cf16aa14.aarch64.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6368+cf16aa14.aarch64.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6368+cf16aa14.aarch64.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6368+cf16aa14.aarch64.rpm
podman-1.6.4-11.module+el8.2.0+6368+cf16aa14.aarch64.rpm
podman-debuginfo-1.6.4-11.module+el8.2.0+6368+cf16aa14.aarch64.rpm
podman-debugsource-1.6.4-11.module+el8.2.0+6368+cf16aa14.aarch64.rpm
podman-remote-1.6.4-11.module+el8.2.0+6368+cf16aa14.aarch64.rpm
podman-remote-debuginfo-1.6.4-11.module+el8.2.0+6368+cf16aa14.aarch64.rpm
podman-tests-1.6.4-11.module+el8.2.0+6368+cf16aa14.aarch64.rpm
python3-criu-3.12-9.module+el8.2.0+6368+cf16aa14.aarch64.rpm
runc-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.aarch64.rpm
runc-debuginfo-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.aarch64.rpm
runc-debugsource-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.aarch64.rpm
skopeo-0.1.40-11.module+el8.2.0+6374+67f43e89.aarch64.rpm
skopeo-debuginfo-0.1.40-11.module+el8.2.0+6374+67f43e89.aarch64.rpm
skopeo-debugsource-0.1.40-11.module+el8.2.0+6374+67f43e89.aarch64.rpm
skopeo-tests-0.1.40-11.module+el8.2.0+6374+67f43e89.aarch64.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.aarch64.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.aarch64.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.aarch64.rpm

noarch:
cockpit-podman-12-1.module+el8.2.0+6368+cf16aa14.noarch.rpm
container-selinux-2.124.0-1.module+el8.2.0+6368+cf16aa14.noarch.rpm
podman-docker-1.6.4-11.module+el8.2.0+6368+cf16aa14.noarch.rpm
python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.0+6368+cf16aa14.noarch.rpm
toolbox-0.0.7-1.module+el8.2.0+6368+cf16aa14.noarch.rpm
udica-0.2.1-2.module+el8.2.0+6368+cf16aa14.noarch.rpm

ppc64le:
buildah-1.11.6-8.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
buildah-debuginfo-1.11.6-8.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
buildah-debugsource-1.11.6-8.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
buildah-tests-1.11.6-8.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
buildah-tests-debuginfo-1.11.6-8.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
conmon-2.0.6-1.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
containernetworking-plugins-0.8.3-5.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
containernetworking-plugins-debuginfo-0.8.3-5.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
containernetworking-plugins-debugsource-0.8.3-5.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
containers-common-0.1.40-11.module+el8.2.0+6374+67f43e89.ppc64le.rpm
crit-3.12-9.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
criu-3.12-9.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
criu-debugsource-3.12-9.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
podman-1.6.4-11.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
podman-debuginfo-1.6.4-11.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
podman-debugsource-1.6.4-11.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
podman-remote-1.6.4-11.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
podman-remote-debuginfo-1.6.4-11.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
podman-tests-1.6.4-11.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
python3-criu-3.12-9.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
runc-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
runc-debuginfo-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
runc-debugsource-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
skopeo-0.1.40-11.module+el8.2.0+6374+67f43e89.ppc64le.rpm
skopeo-debuginfo-0.1.40-11.module+el8.2.0+6374+67f43e89.ppc64le.rpm
skopeo-debugsource-0.1.40-11.module+el8.2.0+6374+67f43e89.ppc64le.rpm
skopeo-tests-0.1.40-11.module+el8.2.0+6374+67f43e89.ppc64le.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.ppc64le.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.ppc64le.rpm

s390x:
buildah-1.11.6-8.module+el8.2.0+6368+cf16aa14.s390x.rpm
buildah-debuginfo-1.11.6-8.module+el8.2.0+6368+cf16aa14.s390x.rpm
buildah-debugsource-1.11.6-8.module+el8.2.0+6368+cf16aa14.s390x.rpm
buildah-tests-1.11.6-8.module+el8.2.0+6368+cf16aa14.s390x.rpm
buildah-tests-debuginfo-1.11.6-8.module+el8.2.0+6368+cf16aa14.s390x.rpm
conmon-2.0.6-1.module+el8.2.0+6368+cf16aa14.s390x.rpm
containernetworking-plugins-0.8.3-5.module+el8.2.0+6368+cf16aa14.s390x.rpm
containernetworking-plugins-debuginfo-0.8.3-5.module+el8.2.0+6368+cf16aa14.s390x.rpm
containernetworking-plugins-debugsource-0.8.3-5.module+el8.2.0+6368+cf16aa14.s390x.rpm
containers-common-0.1.40-11.module+el8.2.0+6374+67f43e89.s390x.rpm
crit-3.12-9.module+el8.2.0+6368+cf16aa14.s390x.rpm
criu-3.12-9.module+el8.2.0+6368+cf16aa14.s390x.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6368+cf16aa14.s390x.rpm
criu-debugsource-3.12-9.module+el8.2.0+6368+cf16aa14.s390x.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6368+cf16aa14.s390x.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6368+cf16aa14.s390x.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6368+cf16aa14.s390x.rpm
podman-1.6.4-11.module+el8.2.0+6368+cf16aa14.s390x.rpm
podman-debuginfo-1.6.4-11.module+el8.2.0+6368+cf16aa14.s390x.rpm
podman-debugsource-1.6.4-11.module+el8.2.0+6368+cf16aa14.s390x.rpm
podman-remote-1.6.4-11.module+el8.2.0+6368+cf16aa14.s390x.rpm
podman-remote-debuginfo-1.6.4-11.module+el8.2.0+6368+cf16aa14.s390x.rpm
podman-tests-1.6.4-11.module+el8.2.0+6368+cf16aa14.s390x.rpm
python3-criu-3.12-9.module+el8.2.0+6368+cf16aa14.s390x.rpm
runc-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.s390x.rpm
runc-debuginfo-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.s390x.rpm
runc-debugsource-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.s390x.rpm
skopeo-0.1.40-11.module+el8.2.0+6374+67f43e89.s390x.rpm
skopeo-debuginfo-0.1.40-11.module+el8.2.0+6374+67f43e89.s390x.rpm
skopeo-debugsource-0.1.40-11.module+el8.2.0+6374+67f43e89.s390x.rpm
skopeo-tests-0.1.40-11.module+el8.2.0+6374+67f43e89.s390x.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.s390x.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.s390x.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.s390x.rpm

x86_64:
buildah-1.11.6-8.module+el8.2.0+6368+cf16aa14.x86_64.rpm
buildah-debuginfo-1.11.6-8.module+el8.2.0+6368+cf16aa14.x86_64.rpm
buildah-debugsource-1.11.6-8.module+el8.2.0+6368+cf16aa14.x86_64.rpm
buildah-tests-1.11.6-8.module+el8.2.0+6368+cf16aa14.x86_64.rpm
buildah-tests-debuginfo-1.11.6-8.module+el8.2.0+6368+cf16aa14.x86_64.rpm
conmon-2.0.6-1.module+el8.2.0+6368+cf16aa14.x86_64.rpm
containernetworking-plugins-0.8.3-5.module+el8.2.0+6368+cf16aa14.x86_64.rpm
containernetworking-plugins-debuginfo-0.8.3-5.module+el8.2.0+6368+cf16aa14.x86_64.rpm
containernetworking-plugins-debugsource-0.8.3-5.module+el8.2.0+6368+cf16aa14.x86_64.rpm
containers-common-0.1.40-11.module+el8.2.0+6374+67f43e89.x86_64.rpm
crit-3.12-9.module+el8.2.0+6368+cf16aa14.x86_64.rpm
criu-3.12-9.module+el8.2.0+6368+cf16aa14.x86_64.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6368+cf16aa14.x86_64.rpm
criu-debugsource-3.12-9.module+el8.2.0+6368+cf16aa14.x86_64.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6368+cf16aa14.x86_64.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6368+cf16aa14.x86_64.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6368+cf16aa14.x86_64.rpm
podman-1.6.4-11.module+el8.2.0+6368+cf16aa14.x86_64.rpm
podman-debuginfo-1.6.4-11.module+el8.2.0+6368+cf16aa14.x86_64.rpm
podman-debugsource-1.6.4-11.module+el8.2.0+6368+cf16aa14.x86_64.rpm
podman-remote-1.6.4-11.module+el8.2.0+6368+cf16aa14.x86_64.rpm
podman-remote-debuginfo-1.6.4-11.module+el8.2.0+6368+cf16aa14.x86_64.rpm
podman-tests-1.6.4-11.module+el8.2.0+6368+cf16aa14.x86_64.rpm
python3-criu-3.12-9.module+el8.2.0+6368+cf16aa14.x86_64.rpm
runc-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.x86_64.rpm
runc-debuginfo-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.x86_64.rpm
runc-debugsource-1.0.0-65.rc10.module+el8.2.0+6368+cf16aa14.x86_64.rpm
skopeo-0.1.40-11.module+el8.2.0+6374+67f43e89.x86_64.rpm
skopeo-debuginfo-0.1.40-11.module+el8.2.0+6374+67f43e89.x86_64.rpm
skopeo-debugsource-0.1.40-11.module+el8.2.0+6374+67f43e89.x86_64.rpm
skopeo-tests-0.1.40-11.module+el8.2.0+6374+67f43e89.x86_64.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.x86_64.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.x86_64.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+6368+cf16aa14.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2020-10696
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
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=P76v
—–END PGP SIGNATURE—–

—
RHSA-announce mailing list
RHSA-announce@redhat.com
https://www.redhat.com/mailman/listinfo/rhsa-announce

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Important: container-tools:2.0 security update
Advisory ID: RHSA-2020:1931-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2020:1931
Issue date: 2020-04-28
CVE Names: CVE-2020-10696
=====================================================================

1. Summary:

An update for the container-tools:2.0 module is now available for Red Hat
Enterprise Linux 8.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) – aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The container-tools module contains tools for working with containers,
notably podman, buildah, skopeo, and runc.

Security Fix(es):

* buildah: Crafted input tar file may lead to local file overwrite during
image build process (CVE-2020-10696)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1817651 – CVE-2020-10696 buildah: Crafted input tar file may lead to local file overwrite during image build process

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:
buildah-1.11.6-7.module+el8.2.0+6369+1f4293b4.src.rpm
cockpit-podman-11-1.module+el8.2.0+6369+1f4293b4.src.rpm
conmon-2.0.6-1.module+el8.2.0+6369+1f4293b4.src.rpm
container-selinux-2.124.0-1.module+el8.2.0+6369+1f4293b4.src.rpm
containernetworking-plugins-0.8.3-4.module+el8.2.0+6369+1f4293b4.src.rpm
criu-3.12-9.module+el8.2.0+6369+1f4293b4.src.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6369+1f4293b4.src.rpm
podman-1.6.4-11.module+el8.2.0+6369+1f4293b4.src.rpm
python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.0+6369+1f4293b4.src.rpm
runc-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.src.rpm
skopeo-0.1.40-9.module+el8.2.0+6373+4950d421.src.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.src.rpm
toolbox-0.0.7-1.module+el8.2.0+6369+1f4293b4.src.rpm
udica-0.2.1-2.module+el8.2.0+6369+1f4293b4.src.rpm

aarch64:
buildah-1.11.6-7.module+el8.2.0+6369+1f4293b4.aarch64.rpm
buildah-debuginfo-1.11.6-7.module+el8.2.0+6369+1f4293b4.aarch64.rpm
buildah-debugsource-1.11.6-7.module+el8.2.0+6369+1f4293b4.aarch64.rpm
buildah-tests-1.11.6-7.module+el8.2.0+6369+1f4293b4.aarch64.rpm
buildah-tests-debuginfo-1.11.6-7.module+el8.2.0+6369+1f4293b4.aarch64.rpm
conmon-2.0.6-1.module+el8.2.0+6369+1f4293b4.aarch64.rpm
containernetworking-plugins-0.8.3-4.module+el8.2.0+6369+1f4293b4.aarch64.rpm
containernetworking-plugins-debuginfo-0.8.3-4.module+el8.2.0+6369+1f4293b4.aarch64.rpm
containernetworking-plugins-debugsource-0.8.3-4.module+el8.2.0+6369+1f4293b4.aarch64.rpm
containers-common-0.1.40-9.module+el8.2.0+6373+4950d421.aarch64.rpm
crit-3.12-9.module+el8.2.0+6369+1f4293b4.aarch64.rpm
criu-3.12-9.module+el8.2.0+6369+1f4293b4.aarch64.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6369+1f4293b4.aarch64.rpm
criu-debugsource-3.12-9.module+el8.2.0+6369+1f4293b4.aarch64.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6369+1f4293b4.aarch64.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6369+1f4293b4.aarch64.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6369+1f4293b4.aarch64.rpm
podman-1.6.4-11.module+el8.2.0+6369+1f4293b4.aarch64.rpm
podman-debuginfo-1.6.4-11.module+el8.2.0+6369+1f4293b4.aarch64.rpm
podman-debugsource-1.6.4-11.module+el8.2.0+6369+1f4293b4.aarch64.rpm
podman-remote-1.6.4-11.module+el8.2.0+6369+1f4293b4.aarch64.rpm
podman-remote-debuginfo-1.6.4-11.module+el8.2.0+6369+1f4293b4.aarch64.rpm
podman-tests-1.6.4-11.module+el8.2.0+6369+1f4293b4.aarch64.rpm
python3-criu-3.12-9.module+el8.2.0+6369+1f4293b4.aarch64.rpm
runc-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.aarch64.rpm
runc-debuginfo-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.aarch64.rpm
runc-debugsource-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.aarch64.rpm
skopeo-0.1.40-9.module+el8.2.0+6373+4950d421.aarch64.rpm
skopeo-debuginfo-0.1.40-9.module+el8.2.0+6373+4950d421.aarch64.rpm
skopeo-debugsource-0.1.40-9.module+el8.2.0+6373+4950d421.aarch64.rpm
skopeo-tests-0.1.40-9.module+el8.2.0+6373+4950d421.aarch64.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.aarch64.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.aarch64.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.aarch64.rpm

noarch:
cockpit-podman-11-1.module+el8.2.0+6369+1f4293b4.noarch.rpm
container-selinux-2.124.0-1.module+el8.2.0+6369+1f4293b4.noarch.rpm
podman-docker-1.6.4-11.module+el8.2.0+6369+1f4293b4.noarch.rpm
python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.0+6369+1f4293b4.noarch.rpm
toolbox-0.0.7-1.module+el8.2.0+6369+1f4293b4.noarch.rpm
udica-0.2.1-2.module+el8.2.0+6369+1f4293b4.noarch.rpm

ppc64le:
buildah-1.11.6-7.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
buildah-debuginfo-1.11.6-7.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
buildah-debugsource-1.11.6-7.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
buildah-tests-1.11.6-7.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
buildah-tests-debuginfo-1.11.6-7.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
conmon-2.0.6-1.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
containernetworking-plugins-0.8.3-4.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
containernetworking-plugins-debuginfo-0.8.3-4.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
containernetworking-plugins-debugsource-0.8.3-4.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
containers-common-0.1.40-9.module+el8.2.0+6373+4950d421.ppc64le.rpm
crit-3.12-9.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
criu-3.12-9.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
criu-debugsource-3.12-9.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
podman-1.6.4-11.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
podman-debuginfo-1.6.4-11.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
podman-debugsource-1.6.4-11.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
podman-remote-1.6.4-11.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
podman-remote-debuginfo-1.6.4-11.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
podman-tests-1.6.4-11.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
python3-criu-3.12-9.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
runc-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
runc-debuginfo-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
runc-debugsource-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
skopeo-0.1.40-9.module+el8.2.0+6373+4950d421.ppc64le.rpm
skopeo-debuginfo-0.1.40-9.module+el8.2.0+6373+4950d421.ppc64le.rpm
skopeo-debugsource-0.1.40-9.module+el8.2.0+6373+4950d421.ppc64le.rpm
skopeo-tests-0.1.40-9.module+el8.2.0+6373+4950d421.ppc64le.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.ppc64le.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.ppc64le.rpm

s390x:
buildah-1.11.6-7.module+el8.2.0+6369+1f4293b4.s390x.rpm
buildah-debuginfo-1.11.6-7.module+el8.2.0+6369+1f4293b4.s390x.rpm
buildah-debugsource-1.11.6-7.module+el8.2.0+6369+1f4293b4.s390x.rpm
buildah-tests-1.11.6-7.module+el8.2.0+6369+1f4293b4.s390x.rpm
buildah-tests-debuginfo-1.11.6-7.module+el8.2.0+6369+1f4293b4.s390x.rpm
conmon-2.0.6-1.module+el8.2.0+6369+1f4293b4.s390x.rpm
containernetworking-plugins-0.8.3-4.module+el8.2.0+6369+1f4293b4.s390x.rpm
containernetworking-plugins-debuginfo-0.8.3-4.module+el8.2.0+6369+1f4293b4.s390x.rpm
containernetworking-plugins-debugsource-0.8.3-4.module+el8.2.0+6369+1f4293b4.s390x.rpm
containers-common-0.1.40-9.module+el8.2.0+6373+4950d421.s390x.rpm
crit-3.12-9.module+el8.2.0+6369+1f4293b4.s390x.rpm
criu-3.12-9.module+el8.2.0+6369+1f4293b4.s390x.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6369+1f4293b4.s390x.rpm
criu-debugsource-3.12-9.module+el8.2.0+6369+1f4293b4.s390x.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6369+1f4293b4.s390x.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6369+1f4293b4.s390x.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6369+1f4293b4.s390x.rpm
podman-1.6.4-11.module+el8.2.0+6369+1f4293b4.s390x.rpm
podman-debuginfo-1.6.4-11.module+el8.2.0+6369+1f4293b4.s390x.rpm
podman-debugsource-1.6.4-11.module+el8.2.0+6369+1f4293b4.s390x.rpm
podman-remote-1.6.4-11.module+el8.2.0+6369+1f4293b4.s390x.rpm
podman-remote-debuginfo-1.6.4-11.module+el8.2.0+6369+1f4293b4.s390x.rpm
podman-tests-1.6.4-11.module+el8.2.0+6369+1f4293b4.s390x.rpm
python3-criu-3.12-9.module+el8.2.0+6369+1f4293b4.s390x.rpm
runc-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.s390x.rpm
runc-debuginfo-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.s390x.rpm
runc-debugsource-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.s390x.rpm
skopeo-0.1.40-9.module+el8.2.0+6373+4950d421.s390x.rpm
skopeo-debuginfo-0.1.40-9.module+el8.2.0+6373+4950d421.s390x.rpm
skopeo-debugsource-0.1.40-9.module+el8.2.0+6373+4950d421.s390x.rpm
skopeo-tests-0.1.40-9.module+el8.2.0+6373+4950d421.s390x.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.s390x.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.s390x.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.s390x.rpm

x86_64:
buildah-1.11.6-7.module+el8.2.0+6369+1f4293b4.x86_64.rpm
buildah-debuginfo-1.11.6-7.module+el8.2.0+6369+1f4293b4.x86_64.rpm
buildah-debugsource-1.11.6-7.module+el8.2.0+6369+1f4293b4.x86_64.rpm
buildah-tests-1.11.6-7.module+el8.2.0+6369+1f4293b4.x86_64.rpm
buildah-tests-debuginfo-1.11.6-7.module+el8.2.0+6369+1f4293b4.x86_64.rpm
conmon-2.0.6-1.module+el8.2.0+6369+1f4293b4.x86_64.rpm
containernetworking-plugins-0.8.3-4.module+el8.2.0+6369+1f4293b4.x86_64.rpm
containernetworking-plugins-debuginfo-0.8.3-4.module+el8.2.0+6369+1f4293b4.x86_64.rpm
containernetworking-plugins-debugsource-0.8.3-4.module+el8.2.0+6369+1f4293b4.x86_64.rpm
containers-common-0.1.40-9.module+el8.2.0+6373+4950d421.x86_64.rpm
crit-3.12-9.module+el8.2.0+6369+1f4293b4.x86_64.rpm
criu-3.12-9.module+el8.2.0+6369+1f4293b4.x86_64.rpm
criu-debuginfo-3.12-9.module+el8.2.0+6369+1f4293b4.x86_64.rpm
criu-debugsource-3.12-9.module+el8.2.0+6369+1f4293b4.x86_64.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6369+1f4293b4.x86_64.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6369+1f4293b4.x86_64.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6369+1f4293b4.x86_64.rpm
podman-1.6.4-11.module+el8.2.0+6369+1f4293b4.x86_64.rpm
podman-debuginfo-1.6.4-11.module+el8.2.0+6369+1f4293b4.x86_64.rpm
podman-debugsource-1.6.4-11.module+el8.2.0+6369+1f4293b4.x86_64.rpm
podman-remote-1.6.4-11.module+el8.2.0+6369+1f4293b4.x86_64.rpm
podman-remote-debuginfo-1.6.4-11.module+el8.2.0+6369+1f4293b4.x86_64.rpm
podman-tests-1.6.4-11.module+el8.2.0+6369+1f4293b4.x86_64.rpm
python3-criu-3.12-9.module+el8.2.0+6369+1f4293b4.x86_64.rpm
runc-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.x86_64.rpm
runc-debuginfo-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.x86_64.rpm
runc-debugsource-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.x86_64.rpm
skopeo-0.1.40-9.module+el8.2.0+6373+4950d421.x86_64.rpm
skopeo-debuginfo-0.1.40-9.module+el8.2.0+6373+4950d421.x86_64.rpm
skopeo-debugsource-0.1.40-9.module+el8.2.0+6373+4950d421.x86_64.rpm
skopeo-tests-0.1.40-9.module+el8.2.0+6373+4950d421.x86_64.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.x86_64.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.x86_64.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2020-10696
https://access.redhat.com/security/updates/classification/#important

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/
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=99yK
—–END PGP SIGNATURE—–

—
RHSA-announce mailing list
RHSA-announce@redhat.com
https://www.redhat.com/mailman/listinfo/rhsa-announce

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256

=====================================================================
Red Hat Security Advisory

Synopsis: Moderate: container-tools:rhel8 security, bug fix, and enhancement update
Advisory ID: RHSA-2020:1650-01
Product: Red Hat Enterprise Linux
Advisory URL: https://access.redhat.com/errata/RHSA-2020:1650
Issue date: 2020-04-28
CVE Names: CVE-2019-19921 CVE-2020-1702 CVE-2020-1726
=====================================================================

1. Summary:

An update for the container-tools:rhel8 module is now available for Red Hat
Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) – aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The container-tools module contains tools for working with containers,
notably podman, buildah, skopeo, and runc.

Security Fix(es):

* runc: volume mount race condition with shared mounts leads to information
leak/integrity manipulation (CVE-2019-19921)

* containers/image: Container images read entire image manifest into memory
(CVE-2020-1702)

* podman: incorrectly allows existing files in volumes to be overwritten by
a container when it is created (CVE-2020-1726)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat
Enterprise Linux 8.2 Release Notes linked from the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1703245 – [RFE] Add button to run terminal within the container
1717357 – buildah images -f “dangling=true” is not working as expect
1731107 – support podman ps filter regular expressions
1732704 – udica should be able to update the generated policy based on AVC denial messages
1732713 – Run container from cockpit-podman with memory limit doesn’t work
1748519 – avc: podman run –security-opt label=type:svirt_qemu_net_t
1749999 – podman bash completion error
1754744 – [8.2] Backport Podman’s –env-host support to 8.1
1754763 – [8.2] Podman search shows limited numbers of images
1755119 – Read-only podman run errors when one of the volumes it by default mounts as tmpfs are also defined as VOLUME
1756919 – Podman inspect does not parse the keys of the returned JSON
1757693 – Rebase udica to 0.2.0
1757845 – You have to remove that container to be able to reuse that name.: that name is already in use (due to exec user process caused “no such file or directory”)
1763454 – libslirp sends RST to app in response to arriving FIN when containerized socket is shutdown() with SHUT_WR
1766774 – podman-1.6.2-1 rootless: Error: slirp4netns failed
1768930 – backport json-file logging support to 1.4.2
1769469 – Selinux won’t allow SCTP inter pod communication
1771990 – Varlink subcommand is missing for podman in rhel-8.2
1774755 – syslog getting spammed with `{Created,Removed} slice libcontainer_*`
1775307 – Concurrent ‘podman pull/run’ sometimes fails with “Error processing tar file(io: read/write on closed pipe)”
1776112 – journald errors out with “write child: broken pipe”
1779834 – [8.2] Deadlock when pulling an image is interrupted
1783267 – Podman is not compiled with FIPS mode – container-tools-rhel8.-8.2.0
1783268 – Skopeo is not compiled with FIPS mode – container-tools-rhel8-8.2.0
1783270 – Buildah is not compiled with FIPS mode – container-tools-rhel8-8.2.0
1783272 – runc is not compiled with FIPS mode – container-tools-rhel8-8.2.0
1783274 – containernetworking-plugins is not compiled with FIPS mode – container-tools-rhel8-8.2.0
1784267 – Remove quay.io from the default search list
1784952 – Buildah needs to support FIPS Mode bind mount in RHEL8.2++ containers.
1788539 – podman and podman-manpages needs merging
1792796 – CVE-2020-1702 containers/image: Container images read entire image manifest into memory
1793084 – “podman play kube” generates wrong UserCommand when creating pod, defaults to /bin/bash
1793598 – podman commands failing and reporting “cannot chdir: Permission denied”
1796107 – CVE-2019-19921 runc: volume mount race condition with shared mounts leads to information leak/integrity manipulation
1801152 – CVE-2020-1726 podman: incorrectly allows existing files in volumes to be overwritten by a container when it is created
1802907 – useradd and groupadd fail under rootless Buildah and podman
1803496 – useradd and groupadd fail under rootless Buildah and podman [stream-container-tools-rhel8-rhel-8.2.0]
1804849 – fuse-overlayfs segfault
1805017 – fuse-overlayfs segfault [stream-container-tools-rhel8-rhel-8.2.0/fuse-overlayfs]
1805212 – podman (1.6.4) rhel 8.1 no route to host from inside container
1806901 – podman (1.6.4) rhel 8.1 no route to host from inside container [stream-container-tools-rhel8-rhel-8.2.0/podman]
1808707 – [FJ8.2 Bug]: [REG]The “–group-add” option of “podman create” doesn’t function. [stream-container-tools-rhel8-rhel-8.2.0/podman]
1810053 – Proposed registries.conf for container-tools-rhel8-8.2.0
1811514 – [container-tools:rhel8] Failed to start existing container
1813295 – Skopeo doesn’t handle HTTP 429 errors properly

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:
buildah-1.11.6-7.module+el8.2.0+5856+b8046c6d.src.rpm
cockpit-podman-12-1.module+el8.2.0+5950+6d183a6a.src.rpm
conmon-2.0.6-1.module+el8.2.0+5182+3136e5d4.src.rpm
container-selinux-2.124.0-1.module+el8.2.0+5182+3136e5d4.src.rpm
containernetworking-plugins-0.8.3-5.module+el8.2.0+5201+6b31f0d9.src.rpm
criu-3.12-9.module+el8.2.0+5029+3ac48e7d.src.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6060+9dbc027d.src.rpm
podman-1.6.4-10.module+el8.2.0+6063+e761893a.src.rpm
python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.0+5201+6b31f0d9.src.rpm
runc-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.src.rpm
skopeo-0.1.40-10.module+el8.2.0+5955+6cd70ceb.src.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.src.rpm
toolbox-0.0.7-1.module+el8.2.0+6096+9c3f08f3.src.rpm
udica-0.2.1-2.module+el8.2.0+4896+8f613c81.src.rpm

aarch64:
buildah-1.11.6-7.module+el8.2.0+5856+b8046c6d.aarch64.rpm
buildah-debuginfo-1.11.6-7.module+el8.2.0+5856+b8046c6d.aarch64.rpm
buildah-debugsource-1.11.6-7.module+el8.2.0+5856+b8046c6d.aarch64.rpm
buildah-tests-1.11.6-7.module+el8.2.0+5856+b8046c6d.aarch64.rpm
buildah-tests-debuginfo-1.11.6-7.module+el8.2.0+5856+b8046c6d.aarch64.rpm
conmon-2.0.6-1.module+el8.2.0+5182+3136e5d4.aarch64.rpm
containernetworking-plugins-0.8.3-5.module+el8.2.0+5201+6b31f0d9.aarch64.rpm
containernetworking-plugins-debuginfo-0.8.3-5.module+el8.2.0+5201+6b31f0d9.aarch64.rpm
containernetworking-plugins-debugsource-0.8.3-5.module+el8.2.0+5201+6b31f0d9.aarch64.rpm
containers-common-0.1.40-10.module+el8.2.0+5955+6cd70ceb.aarch64.rpm
crit-3.12-9.module+el8.2.0+5029+3ac48e7d.aarch64.rpm
criu-3.12-9.module+el8.2.0+5029+3ac48e7d.aarch64.rpm
criu-debuginfo-3.12-9.module+el8.2.0+5029+3ac48e7d.aarch64.rpm
criu-debugsource-3.12-9.module+el8.2.0+5029+3ac48e7d.aarch64.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6060+9dbc027d.aarch64.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6060+9dbc027d.aarch64.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6060+9dbc027d.aarch64.rpm
podman-1.6.4-10.module+el8.2.0+6063+e761893a.aarch64.rpm
podman-debuginfo-1.6.4-10.module+el8.2.0+6063+e761893a.aarch64.rpm
podman-debugsource-1.6.4-10.module+el8.2.0+6063+e761893a.aarch64.rpm
podman-remote-1.6.4-10.module+el8.2.0+6063+e761893a.aarch64.rpm
podman-remote-debuginfo-1.6.4-10.module+el8.2.0+6063+e761893a.aarch64.rpm
podman-tests-1.6.4-10.module+el8.2.0+6063+e761893a.aarch64.rpm
python3-criu-3.12-9.module+el8.2.0+5029+3ac48e7d.aarch64.rpm
runc-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.aarch64.rpm
runc-debuginfo-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.aarch64.rpm
runc-debugsource-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.aarch64.rpm
skopeo-0.1.40-10.module+el8.2.0+5955+6cd70ceb.aarch64.rpm
skopeo-debuginfo-0.1.40-10.module+el8.2.0+5955+6cd70ceb.aarch64.rpm
skopeo-debugsource-0.1.40-10.module+el8.2.0+5955+6cd70ceb.aarch64.rpm
skopeo-tests-0.1.40-10.module+el8.2.0+5955+6cd70ceb.aarch64.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.aarch64.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.aarch64.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.aarch64.rpm

noarch:
cockpit-podman-12-1.module+el8.2.0+5950+6d183a6a.noarch.rpm
container-selinux-2.124.0-1.module+el8.2.0+5182+3136e5d4.noarch.rpm
podman-docker-1.6.4-10.module+el8.2.0+6063+e761893a.noarch.rpm
python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.0+5201+6b31f0d9.noarch.rpm
toolbox-0.0.7-1.module+el8.2.0+6096+9c3f08f3.noarch.rpm
udica-0.2.1-2.module+el8.2.0+4896+8f613c81.noarch.rpm

ppc64le:
buildah-1.11.6-7.module+el8.2.0+5856+b8046c6d.ppc64le.rpm
buildah-debuginfo-1.11.6-7.module+el8.2.0+5856+b8046c6d.ppc64le.rpm
buildah-debugsource-1.11.6-7.module+el8.2.0+5856+b8046c6d.ppc64le.rpm
buildah-tests-1.11.6-7.module+el8.2.0+5856+b8046c6d.ppc64le.rpm
buildah-tests-debuginfo-1.11.6-7.module+el8.2.0+5856+b8046c6d.ppc64le.rpm
conmon-2.0.6-1.module+el8.2.0+5182+3136e5d4.ppc64le.rpm
containernetworking-plugins-0.8.3-5.module+el8.2.0+5201+6b31f0d9.ppc64le.rpm
containernetworking-plugins-debuginfo-0.8.3-5.module+el8.2.0+5201+6b31f0d9.ppc64le.rpm
containernetworking-plugins-debugsource-0.8.3-5.module+el8.2.0+5201+6b31f0d9.ppc64le.rpm
containers-common-0.1.40-10.module+el8.2.0+5955+6cd70ceb.ppc64le.rpm
crit-3.12-9.module+el8.2.0+5029+3ac48e7d.ppc64le.rpm
criu-3.12-9.module+el8.2.0+5029+3ac48e7d.ppc64le.rpm
criu-debuginfo-3.12-9.module+el8.2.0+5029+3ac48e7d.ppc64le.rpm
criu-debugsource-3.12-9.module+el8.2.0+5029+3ac48e7d.ppc64le.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6060+9dbc027d.ppc64le.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6060+9dbc027d.ppc64le.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6060+9dbc027d.ppc64le.rpm
podman-1.6.4-10.module+el8.2.0+6063+e761893a.ppc64le.rpm
podman-debuginfo-1.6.4-10.module+el8.2.0+6063+e761893a.ppc64le.rpm
podman-debugsource-1.6.4-10.module+el8.2.0+6063+e761893a.ppc64le.rpm
podman-remote-1.6.4-10.module+el8.2.0+6063+e761893a.ppc64le.rpm
podman-remote-debuginfo-1.6.4-10.module+el8.2.0+6063+e761893a.ppc64le.rpm
podman-tests-1.6.4-10.module+el8.2.0+6063+e761893a.ppc64le.rpm
python3-criu-3.12-9.module+el8.2.0+5029+3ac48e7d.ppc64le.rpm
runc-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.ppc64le.rpm
runc-debuginfo-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.ppc64le.rpm
runc-debugsource-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.ppc64le.rpm
skopeo-0.1.40-10.module+el8.2.0+5955+6cd70ceb.ppc64le.rpm
skopeo-debuginfo-0.1.40-10.module+el8.2.0+5955+6cd70ceb.ppc64le.rpm
skopeo-debugsource-0.1.40-10.module+el8.2.0+5955+6cd70ceb.ppc64le.rpm
skopeo-tests-0.1.40-10.module+el8.2.0+5955+6cd70ceb.ppc64le.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.ppc64le.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.ppc64le.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.ppc64le.rpm

s390x:
buildah-1.11.6-7.module+el8.2.0+5856+b8046c6d.s390x.rpm
buildah-debuginfo-1.11.6-7.module+el8.2.0+5856+b8046c6d.s390x.rpm
buildah-debugsource-1.11.6-7.module+el8.2.0+5856+b8046c6d.s390x.rpm
buildah-tests-1.11.6-7.module+el8.2.0+5856+b8046c6d.s390x.rpm
buildah-tests-debuginfo-1.11.6-7.module+el8.2.0+5856+b8046c6d.s390x.rpm
conmon-2.0.6-1.module+el8.2.0+5182+3136e5d4.s390x.rpm
containernetworking-plugins-0.8.3-5.module+el8.2.0+5201+6b31f0d9.s390x.rpm
containernetworking-plugins-debuginfo-0.8.3-5.module+el8.2.0+5201+6b31f0d9.s390x.rpm
containernetworking-plugins-debugsource-0.8.3-5.module+el8.2.0+5201+6b31f0d9.s390x.rpm
containers-common-0.1.40-10.module+el8.2.0+5955+6cd70ceb.s390x.rpm
crit-3.12-9.module+el8.2.0+5029+3ac48e7d.s390x.rpm
criu-3.12-9.module+el8.2.0+5029+3ac48e7d.s390x.rpm
criu-debuginfo-3.12-9.module+el8.2.0+5029+3ac48e7d.s390x.rpm
criu-debugsource-3.12-9.module+el8.2.0+5029+3ac48e7d.s390x.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6060+9dbc027d.s390x.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6060+9dbc027d.s390x.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6060+9dbc027d.s390x.rpm
podman-1.6.4-10.module+el8.2.0+6063+e761893a.s390x.rpm
podman-debuginfo-1.6.4-10.module+el8.2.0+6063+e761893a.s390x.rpm
podman-debugsource-1.6.4-10.module+el8.2.0+6063+e761893a.s390x.rpm
podman-remote-1.6.4-10.module+el8.2.0+6063+e761893a.s390x.rpm
podman-remote-debuginfo-1.6.4-10.module+el8.2.0+6063+e761893a.s390x.rpm
podman-tests-1.6.4-10.module+el8.2.0+6063+e761893a.s390x.rpm
python3-criu-3.12-9.module+el8.2.0+5029+3ac48e7d.s390x.rpm
runc-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.s390x.rpm
runc-debuginfo-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.s390x.rpm
runc-debugsource-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.s390x.rpm
skopeo-0.1.40-10.module+el8.2.0+5955+6cd70ceb.s390x.rpm
skopeo-debuginfo-0.1.40-10.module+el8.2.0+5955+6cd70ceb.s390x.rpm
skopeo-debugsource-0.1.40-10.module+el8.2.0+5955+6cd70ceb.s390x.rpm
skopeo-tests-0.1.40-10.module+el8.2.0+5955+6cd70ceb.s390x.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.s390x.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.s390x.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.s390x.rpm

x86_64:
buildah-1.11.6-7.module+el8.2.0+5856+b8046c6d.x86_64.rpm
buildah-debuginfo-1.11.6-7.module+el8.2.0+5856+b8046c6d.x86_64.rpm
buildah-debugsource-1.11.6-7.module+el8.2.0+5856+b8046c6d.x86_64.rpm
buildah-tests-1.11.6-7.module+el8.2.0+5856+b8046c6d.x86_64.rpm
buildah-tests-debuginfo-1.11.6-7.module+el8.2.0+5856+b8046c6d.x86_64.rpm
conmon-2.0.6-1.module+el8.2.0+5182+3136e5d4.x86_64.rpm
containernetworking-plugins-0.8.3-5.module+el8.2.0+5201+6b31f0d9.x86_64.rpm
containernetworking-plugins-debuginfo-0.8.3-5.module+el8.2.0+5201+6b31f0d9.x86_64.rpm
containernetworking-plugins-debugsource-0.8.3-5.module+el8.2.0+5201+6b31f0d9.x86_64.rpm
containers-common-0.1.40-10.module+el8.2.0+5955+6cd70ceb.x86_64.rpm
crit-3.12-9.module+el8.2.0+5029+3ac48e7d.x86_64.rpm
criu-3.12-9.module+el8.2.0+5029+3ac48e7d.x86_64.rpm
criu-debuginfo-3.12-9.module+el8.2.0+5029+3ac48e7d.x86_64.rpm
criu-debugsource-3.12-9.module+el8.2.0+5029+3ac48e7d.x86_64.rpm
fuse-overlayfs-0.7.2-5.module+el8.2.0+6060+9dbc027d.x86_64.rpm
fuse-overlayfs-debuginfo-0.7.2-5.module+el8.2.0+6060+9dbc027d.x86_64.rpm
fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6060+9dbc027d.x86_64.rpm
podman-1.6.4-10.module+el8.2.0+6063+e761893a.x86_64.rpm
podman-debuginfo-1.6.4-10.module+el8.2.0+6063+e761893a.x86_64.rpm
podman-debugsource-1.6.4-10.module+el8.2.0+6063+e761893a.x86_64.rpm
podman-remote-1.6.4-10.module+el8.2.0+6063+e761893a.x86_64.rpm
podman-remote-debuginfo-1.6.4-10.module+el8.2.0+6063+e761893a.x86_64.rpm
podman-tests-1.6.4-10.module+el8.2.0+6063+e761893a.x86_64.rpm
python3-criu-3.12-9.module+el8.2.0+5029+3ac48e7d.x86_64.rpm
runc-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.x86_64.rpm
runc-debuginfo-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.x86_64.rpm
runc-debugsource-1.0.0-65.rc10.module+el8.2.0+5762+aaee29fb.x86_64.rpm
skopeo-0.1.40-10.module+el8.2.0+5955+6cd70ceb.x86_64.rpm
skopeo-debuginfo-0.1.40-10.module+el8.2.0+5955+6cd70ceb.x86_64.rpm
skopeo-debugsource-0.1.40-10.module+el8.2.0+5955+6cd70ceb.x86_64.rpm
skopeo-tests-0.1.40-10.module+el8.2.0+5955+6cd70ceb.x86_64.rpm
slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.x86_64.rpm
slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.x86_64.rpm
slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+5658+9a15711d.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2019-19921
https://access.redhat.com/security/cve/CVE-2020-1702
https://access.redhat.com/security/cve/CVE-2020-1726
https://access.redhat.com/security/updates/classification/#moderate
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

iQIVAwUBXqhV4NzjgjWX9erEAQicCw//aqK54Gmn0Tz+B62o51MN7eWI+Zc4IvPv
THU1yyyiung2vaua+lxTENlB5YHAjLeN4Em38qxeMuyR1eSSMo7GqHFysUu87fzE
gWPNicCavBhYV1YCVshWNfzlLvWvKsMWNQb+eiWNiu9Bn66RxzBf3Q9Pi0PapQEs
BDgN4Y82bCtTrVoWXG6LXq7agj1eOBqIQaG9ARS8TRiH6ez/2RYk0ZtwKPQFmwb5
j3w5YSEbAxxLSG7Ws9qLP79KQTuHT8xkoVIJEMyh2OEZcqyXJ6d5PgS37ksnuM6w
/bLYdrlJReNaxga/9ItMMnecj5nIXXHj8N76XKlq6RwooDHOivbpm8Kh80loSVKD
+8wFk1bnPVDQ1Dr6ps3Br145m4PxMvbzNvTec39Pbpc8Kv0DxSs9ShlCs7S3Q1qW
JVKQu+CP7AVOzWtl2qGgk8Prg9HubiG0vEAdo5LnOWUkVR1Wsp869OrSznLyOkju
HIoSv/O86yhKybrOMA6bI9Ufrfot8PYMXcTVp6VmwBFgJtBCwWVHPuLv/OYo2SOY
mDkiEbrw3ai6Cz4zo+LWNFBYqshKN3ZmwGuff3Of4PdhIWHNyof4uRZl1C3BILlQ
yXkKRknEOwVfrk8ty+qsdaFFN0TJ//gRzGLmpY3rltE3PIjECXCLQmLhutXZKFgi
XQ1sBK7VVuM=
=0kyE
—–END PGP SIGNATURE—–

—
RHSA-announce mailing list
RHSA-announce@redhat.com
https://www.redhat.com/mailman/listinfo/rhsa-announce

Autor	Toni Vugdelija
Cert id	NCERT-REF-2020-04-0001-ADV
Cve	CERT-CVE-DUMMY
ID izvornika	CERT-ORIGID-DUMMY
Proizvod	CERT-DUMMY-PRODUCT
Izvor	Adobe

Sigurnosni nedostaci programskog paketa container-tools

Archives

More in Preporuke

Sigurnosni nedostatak programskog paketa dnsmasq