ELSA-2024-0121

Опубликовано: 11 янв. 2024

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2024-0121: container-tools:4.0 security update (MODERATE)

buildah [1:1.24.6-7]

rebuild for CVE-2023-29406
Related: #2176055

cockpit-podman [46-1]

update to https://github.com/cockpit-project/cockpit-podman/releases/tag/46
Related: #2061390

conmon [2:2.1.4-2]

update to https://github.com/containers/conmon/releases/tag/v2.1.4
Related: #2176055

containernetworking-plugins [1:1.1.1-6]

Rebuild with golang 1.20.6 or higher
Related: Jira:RHEL-4507
Related: Jira:RHEL-7442

containers-common [1-38.0.1]

Updated removed references [Orabug: 33473101] (Alex Burmashev)
Adjust registries.conf (Nikita Gerasimov)
remove references to RedHat registry (Nikita Gerasimov)

container-selinux [2:2.205.0-3]

fix build for stable module
Related: #2176055

criu [3.15-3]

add Requires: criu-libs = %{version}-%{release} in criu-devel
add gating tests
Related: #1934415

crun fuse-overlayfs [1.9-2]

update to https://github.com/containers/fuse-overlayfs/releases/tag/v1.9
Related: #2176055

libslirp oci-seccomp-bpf-hook [1.2.5-2]

fix compatibility with the new bcc
Related: #2176055

podman [2:4.0.2-25]

rebuild with golang 1.20.6+ for CVE-2023-39321 CVE-2023-29409
Related: Jira:RHEL-4508
Related: Jira:RHEL-7443

python-podman [4.0.0-2]

bump to v4.0.0
Related: #2176055

runc [1:1.1.5-2]

rebuild for following CVEs: CVE-2022-41724
Resolves: #2179971

skopeo [2:1.6.2-9]

rebuild because of CVE-2023-29406
Resolves: #2236831

slirp4netns [1.1.8-3]

fix gating - don't use insecure functions - thanks to Marc-Andre Lureau
Related: #2176055

udica [0.2.6-4]

sync with stream-container-tools-4.0-rhel-8.8.0
Related: #2176055

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

Module container-tools:4.0 is enabled

aardvark-dns

1.0.1-38.0.1.module+el8.9.0+90119+2f9ef15c

buildah

1.24.6-7.module+el8.9.0+90119+2f9ef15c

buildah-tests

1.24.6-7.module+el8.9.0+90119+2f9ef15c

cockpit-podman

46-1.module+el8.9.0+90119+2f9ef15c

conmon

2.1.4-2.module+el8.9.0+90119+2f9ef15c

container-selinux

2.205.0-3.module+el8.9.0+90119+2f9ef15c

containernetworking-plugins

1.1.1-6.module+el8.9.0+90119+2f9ef15c

containers-common

1-38.0.1.module+el8.9.0+90119+2f9ef15c

crit

3.15-3.module+el8.9.0+90119+2f9ef15c

criu

3.15-3.module+el8.9.0+90119+2f9ef15c

criu-devel

3.15-3.module+el8.9.0+90119+2f9ef15c

criu-libs

3.15-3.module+el8.9.0+90119+2f9ef15c

crun

1.8.7-1.module+el8.9.0+90119+2f9ef15c

fuse-overlayfs

1.9-2.module+el8.9.0+90119+2f9ef15c

libslirp

4.4.0-1.module+el8.9.0+90119+2f9ef15c

libslirp-devel

4.4.0-1.module+el8.9.0+90119+2f9ef15c

netavark

1.0.1-38.0.1.module+el8.9.0+90119+2f9ef15c

oci-seccomp-bpf-hook

1.2.5-2.module+el8.9.0+90119+2f9ef15c

podman

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-catatonit

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-docker

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-gvproxy

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-plugins

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-remote

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-tests

4.0.2-25.module+el8.9.0+90119+2f9ef15c

python3-criu

3.15-3.module+el8.9.0+90119+2f9ef15c

python3-podman

4.0.0-2.module+el8.9.0+90119+2f9ef15c

runc

1.1.5-2.module+el8.9.0+90119+2f9ef15c

skopeo

1.6.2-9.module+el8.9.0+90119+2f9ef15c

skopeo-tests

1.6.2-9.module+el8.9.0+90119+2f9ef15c

slirp4netns

1.1.8-3.module+el8.9.0+90119+2f9ef15c

udica

0.2.6-4.module+el8.9.0+90119+2f9ef15c

Oracle Linux x86_64

Module container-tools:4.0 is enabled

aardvark-dns

1.0.1-38.0.1.module+el8.9.0+90119+2f9ef15c

buildah

1.24.6-7.module+el8.9.0+90119+2f9ef15c

buildah-tests

1.24.6-7.module+el8.9.0+90119+2f9ef15c

cockpit-podman

46-1.module+el8.9.0+90119+2f9ef15c

conmon

2.1.4-2.module+el8.9.0+90119+2f9ef15c

container-selinux

2.205.0-3.module+el8.9.0+90119+2f9ef15c

containernetworking-plugins

1.1.1-6.module+el8.9.0+90119+2f9ef15c

containers-common

1-38.0.1.module+el8.9.0+90119+2f9ef15c

crit

3.15-3.module+el8.9.0+90119+2f9ef15c

criu

3.15-3.module+el8.9.0+90119+2f9ef15c

criu-devel

3.15-3.module+el8.9.0+90119+2f9ef15c

criu-libs

3.15-3.module+el8.9.0+90119+2f9ef15c

crun

1.8.7-1.module+el8.9.0+90119+2f9ef15c

fuse-overlayfs

1.9-2.module+el8.9.0+90119+2f9ef15c

libslirp

4.4.0-1.module+el8.9.0+90119+2f9ef15c

libslirp-devel

4.4.0-1.module+el8.9.0+90119+2f9ef15c

netavark

1.0.1-38.0.1.module+el8.9.0+90119+2f9ef15c

oci-seccomp-bpf-hook

1.2.5-2.module+el8.9.0+90119+2f9ef15c

podman

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-catatonit

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-docker

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-gvproxy

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-plugins

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-remote

4.0.2-25.module+el8.9.0+90119+2f9ef15c

podman-tests

4.0.2-25.module+el8.9.0+90119+2f9ef15c

python3-criu

3.15-3.module+el8.9.0+90119+2f9ef15c

python3-podman

4.0.0-2.module+el8.9.0+90119+2f9ef15c

runc

1.1.5-2.module+el8.9.0+90119+2f9ef15c

skopeo

1.6.2-9.module+el8.9.0+90119+2f9ef15c

skopeo-tests

1.6.2-9.module+el8.9.0+90119+2f9ef15c

slirp4netns

1.1.8-3.module+el8.9.0+90119+2f9ef15c

udica

0.2.6-4.module+el8.9.0+90119+2f9ef15c

Связанные CVE

Ссылки на источники

Связанные уязвимости

ELSA-2024-2988

oracle-oval

около 1 года назад

ELSA-2024-2988: container-tools:ol8 security update (MODERATE)

ELSA-2023-7766

oracle-oval

больше 1 года назад

ELSA-2023-7766: containernetworking-plugins security update (MODERATE)

ELSA-2023-7765

oracle-oval

больше 1 года назад

ELSA-2023-7765: podman security update (MODERATE)

ELSA-2023-7764

oracle-oval

больше 1 года назад

ELSA-2023-7764: buildah security update (MODERATE)

ELSA-2023-7762

oracle-oval

больше 1 года назад

ELSA-2023-7762: skopeo security update (MODERATE)