Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2023-2282

Опубликовано: 15 мая 2023
Источник: oracle-oval
Платформа: Oracle Linux 9

Описание

ELSA-2023-2282: podman security and bug fix update (MODERATE)

[4.4.1-3.0.1]

  • Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404]

[2:4.4.1-3]

[2:4.4.1-2]

[2:4.4.1-1]

[2:4.4.1-0.1]

[2:4.4.0-1]

  • update to podman-4.4 release
  • Related: #2124478

[2:4.4.0-0.10]

[2:4.4.0-0.9]

[2:4.4.0-0.8]

[2:4.4.0-0.7]

[2:4.4.0-0.6]

  • add quadlet to tests
  • Related: #2124478

[2:4.4.0-0.5]

  • obsolete podman-catatonit in order to not to file conflict with catatonit
  • Related: #2124478

[2:4.4.0-0.4]

  • build v4.4.0-rc2
  • Related: #2124478

[2:4.4.0-0.3]

  • remove podman-machine-cni, it is now part of podman 4.0 or newer
  • Related: #2124478

[2:4.4.0-0.2]

[2:4.4.0-0.1]

[2:4.3.1-4]

  • podman shouldn't provide and file conflict with catatonit in CRB
  • Resolves: #2151322

[2:4.3.1-3]

  • fix 'podman manifest add' is not concurrent safe
  • Resolves: #2105173

[2:4.3.1-2]

  • properly obsolete catatonit
  • Resolves: #2123319

[2:4.3.1-1]

[2:4.3.0-2]

  • rebuild to fix CVE-2022-30629
  • Related: #2102994

[2:4.3.0-1]

[2:4.2.0-3]

  • fix dependency in test subpackage
  • Related: #2061316

[2:4.2.0-2]

  • readd catatonit
  • Related: #2061316

[2:4.2.0-1]

[2:4.2.0-0.3rc3]

  • require catatonit for gating tests
  • Related: #2061316

[2:4.2.0-0.2rc3]

  • update to 4.2.0-rc3
  • Related: #2061316

[2:4.2.0-0.1rc2]

  • update to 4.2.0-rc2
  • Related: #2061316

[2:4.1.1-6]

  • convert catatonit dependency to soft dep as catatonit is no longer in Appstream but in CRB
  • Related: #2061316

[2:4.1.1-5]

  • rebuild for combined gating with catatonit
  • Related: #2097694

[2:4.1.1-4]

  • catatonit is now a standalone package
  • Related: #2097694

[2:4.1.1-3]

[2:4.1.1-2]

  • be sure podman services/sockets are stopped upon package removal
  • Related: #2061316

[2:4.1.1-1]

[2:4.1.0-4]

  • don't require runc and Recommends: crun
  • Related: #2061316

[2:4.1.0-3]

  • Re-enable LTO and debuginfo
  • Related: #2061316

[2:4.1.0-2]

  • update gvisor-tap-vsock to 0.2.0 to fix compilation with golang 1.18
  • Related: #2061316

[2:4.1.0-1]

[2:4.0.3-2]

  • require netavark and move CNI to soft dependencies
  • Related: #2061316

[2:4.0.3-1]

[2:4.0.2-3]

  • bump minimal libseccomp version requirement
  • Related: #2061316

[2:4.0.2-2]

  • rebuilt with golang >= 1.17.5 (CVE-2021-44716, CVE-2021-44717)
  • Related: #2061316

[2:4.0.2-1]

[2:4.0.1-1]

[2:4.0.0-6]

  • set catatonit cflags after configure step, don't explicitly set ldflags
  • Related: #2054115

[2:4.0.0-5]

  • revert previous change and run set_build_flags before the build process
  • Related: #2054115

[2:4.0.0-4]

  • add -D_FORTIFY_SOURCE=2 for podman-catatonit
  • Related: #2054115

[2:4.0.0-3]

  • depend on containers-common >= 2:1-28
  • Related: #2000051

[2:4.0.0-2]

  • use correct commit 49f8da72 for podman, previous commit said 4.0.1-dev
  • Related: #2000051

[2:4.0.0-1]

  • update to podman-4.0.0 release
  • Related: #2000051

[2:4.0.0-0.32]

[2:4.0.0-0.31]

[2:4.0.0-0.30]

  • fix linker flags to assure -D_FORTIFY_SOURCE=2 is present at the command line
  • Related: #2000051

[2:4.0.0-0.29]

[2:4.0.0-0.28]

[2:4.0.0-0.27]

[2:4.0.0-0.26]

  • set CGO_CFLAGS explicitly
  • Related: #2000051

[2:4.0.0-0.25]

  • bump to 0.25 to have highest NVR
  • Related: #2000051

[2:4.0.0-0.4]

  • rebuilt
  • Related: #2000051

[2:4.0.0-0.3]

[2:4.0.0-0.2]

[2:4.0.0-0.1]

[2:3.4.5-0.8]

[2:3.4.5-0.7]

  • add rootless_role (Ed Santiago)
  • Related: #2000051

[2:3.4.5-0.6]

[2:3.4.5-0.5]

[2:3.4.5-0.4]

[2:3.4.5-0.3]

[2:3.4.5-0.2]

  • incorporate gating test fixes from Ed Santiago:
    • remove buildah and skopeo (unused)
    • bump BATS from v1.1 to v1.5
    • rename 'nonroot' to 'rootless'
  • Related: #2000051

[2:3.4.5-0.1]

[2:3.4.4-0.1]

[2:3.4.3-0.11]

  • remove downstream patch already applied upstream
  • Related: #2000051

[2:3.4.3-0.10]

[2:3.4.3-0.9]

[2:3.4.3-0.8]

[2:3.4.3-0.7]

  • bump Epoch to not to pull in older versions built off upstream main branch
  • Related: #2000051

[1:3.4.3-0.6]

[1:3.4.3-0.5]

  • do not put patch URL as the backported patch will get overwritten when 'spectool -g -f' is executed
  • Related: #2000051

[1:3.4.3-0.4]

[1:3.4.3-0.3]

  • remove -t 0 from podman gating test
  • Related: #2000051

[1:3.4.3-0.2]

  • add BuildRequires: shadow-utils-subid-devel
  • Related: #2000051

[1:3.4.3-0.1]

[1:3.4.2-0.8]

[1:3.4.2-0.7]

[1:3.4.2-0.6]

[1:3.4.2-0.5]

[1:3.4.2-0.4]

  • update catatonit to 1.7
  • Related: #2000051

[1:3.4.2-0.3]

[1:3.4.2-0.2]

  • compile catatonit library as PIE
  • Related: #2000051

[1:3.4.2-0.1]

[1:3.4.1-2]

  • more dependency tightening - thanks to Michael Rochefort for noticing
  • Related: #2000051

[1:3.4.1-1]

[1:4.0.0-0.24]

  • respect Epoch in subpackage dependencies
  • Related: #2000051

[1:4.0.0-0.23]

  • bump Epoch to preserve upgrade path from RHEL8
  • Related: #2000051

[4.0.0-0.22]

[4.0.0-0.21]

[4.0.0-0.20]

[4.0.0-0.19]

[4.0.0-0.18]

[4.0.0-0.17]

[4.0.0-0.16]

[4.0.0-0.15]

[4.0.0-0.14]

[4.0.0-0.13]

[4.0.0-0.12]

[4.0.0-0.11]

[4.0.0-0.10]

[4.0.0-0.9]

[4.0.0-0.8]

[4.0.0-0.7]

[4.0.0-0.6]

[4.0.0-0.5]

[4.0.0-0.4]

[4.0.0-0.3]

[4.0.0-0.2]

[4.0.0-0.1]

[3.3.1-1]

[3.3.0-4]

  • Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz#1991688

[3.3.0-3]

[3.3.0-2]

[3.3.0-1]

  • update to 3.3.0 release and switch to the v3.3 maint branch
  • Related: #1970747

[3.3.0-0.27]

[3.3.0-0.26]

[3.3.0-0.25]

[3.3.0-0.24]

[3.3.0-0.23]

[3.3.0-0.22]

  • bump version to follow the 3.3.0 upgrade path
  • Related: #1970747

[3.3.0-0.9]

[3.2.3-0.8]

[3.2.3-0.7]

  • switch to v3.2.3-rhel branch
  • Related: #1970747

[3.2.3-0.6]

[3.2.3-0.5]

[3.2.3-0.4]

[3.2.3-0.3]

[3.2.3-0.2]

  • put 87-podman-bridge.conflist to main podman package not podman-remote
  • Related: #1970747

[3.2.3-0.1]

[3.2.2-2]

  • remove missing unit files
  • Related: #1970747

[3.2.2-1]

  • consume content from v3.2 upstream branch
  • Related: #1970747

[3.3.0-0.21]

  • fix build
  • Related: #1970747

[3.3.0-0.20]

  • update install targets
  • Related: #1970747

[3.3.0-0.19]

[3.3.0-0.18]

[3.3.0-0.17]

[3.3.0-0.16]

[3.3.0-0.15]

[3.3.0-0.14]

[3.3.0-0.13]

  • Rebuilt for RHEL 9 BETA for openssl 3.0 Related: rhbz#1971065

[3.3.0-0.12]

[3.3.0-0.11]

[3.3.0-0.10]

[3.3.0-0.9]

[3.3.0-0.8]

  • add new systemd unit files
  • Related: #1970747

[3.3.0-0.7]

[3.3.0-0.6]

[3.3.0-0.5]

[3.3.0-0.4]

  • update podman
  • Related: #1970747

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

podman

4.4.1-3.0.1.el9

podman-docker

4.4.1-3.0.1.el9

podman-gvproxy

4.4.1-3.0.1.el9

podman-plugins

4.4.1-3.0.1.el9

podman-remote

4.4.1-3.0.1.el9

podman-tests

4.4.1-3.0.1.el9

Oracle Linux x86_64

podman

4.4.1-3.0.1.el9

podman-docker

4.4.1-3.0.1.el9

podman-gvproxy

4.4.1-3.0.1.el9

podman-plugins

4.4.1-3.0.1.el9

podman-remote

4.4.1-3.0.1.el9

podman-tests

4.4.1-3.0.1.el9

Связанные CVE

CVE-2022-30629
CVE-2022-41717

Ссылки на источники

Связанные уязвимости

redos логотип

ROS-20240327-01

CVSS3: 5.3
redos
больше 1 года назад

Множественные уязвимости skopeo

oracle-oval логотип

ELSA-2023-2367

oracle-oval
около 2 лет назад

ELSA-2023-2367: containernetworking-plugins security and bug fix update (MODERATE)

oracle-oval логотип

ELSA-2023-2283

oracle-oval
около 2 лет назад

ELSA-2023-2283: skopeo security and bug fix update (MODERATE)

oracle-oval логотип

ELSA-2023-2253

oracle-oval
около 2 лет назад

ELSA-2023-2253: buildah security and bug fix update (MODERATE)

oracle-oval логотип

ELSA-2023-2758

oracle-oval
около 2 лет назад

ELSA-2023-2758: container-tools:ol8 security, bug fix, and enhancement update (MODERATE)