Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2021:4221

Опубликовано: 09 нояб. 2021
Источник: rocky
Оценка: Moderate

Описание

Moderate: container-tools:2.0 security update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

Security Fix(es):

  • buildah: Host environment variables leaked in build container when using chroot isolation (CVE-2021-3602)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 8.5 Release Notes linked from the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
cockpit-podmannoarch1.module+el8.5.0+770+e2f49861cockpit-podman-11-1.module+el8.5.0+770+e2f49861.noarch.rpm
conmonx86_641.module+el8.5.0+770+e2f49861conmon-2.0.15-1.module+el8.5.0+770+e2f49861.x86_64.rpm
containernetworking-pluginsx86_644.module+el8.5.0+770+e2f49861containernetworking-plugins-0.8.3-4.module+el8.5.0+770+e2f49861.x86_64.rpm
containers-commonx86_644.module+el8.5.0+770+e2f49861containers-common-0.1.41-4.module+el8.5.0+770+e2f49861.x86_64.rpm
container-selinuxnoarch1.module+el8.5.0+770+e2f49861container-selinux-2.130.0-1.module+el8.5.0+770+e2f49861.noarch.rpm
critx86_649.module+el8.5.0+681+c9a1951fcrit-3.12-9.module+el8.5.0+681+c9a1951f.x86_64.rpm
criux86_649.module+el8.5.0+681+c9a1951fcriu-3.12-9.module+el8.5.0+681+c9a1951f.x86_64.rpm
fuse-overlayfsx86_641.module+el8.5.0+770+e2f49861fuse-overlayfs-0.7.8-1.module+el8.5.0+770+e2f49861.x86_64.rpm
python3-criux86_649.module+el8.5.0+681+c9a1951fpython3-criu-3.12-9.module+el8.5.0+681+c9a1951f.x86_64.rpm
python-podman-apinoarch0.2.gitd0a45fe.module+el8.5.0+770+e2f49861python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.5.0+770+e2f49861.noarch.rpm

Показывать по

Связанные CVE

CVE-2021-3602

Ссылки на источники

Исправления

Связанные уязвимости

ubuntu логотип

CVE-2021-3602

CVSS3: 5.5
ubuntu
больше 3 лет назад

An information disclosure flaw was found in Buildah, when building containers using chroot isolation. Running processes in container builds (e.g. Dockerfile RUN commands) can access environment variables from parent and grandparent processes. When run in a container in a CI/CD environment, environment variables may include sensitive information that was shared with the container in order to be used only by Buildah itself (e.g. container registry credentials).

redhat логотип

CVE-2021-3602

CVSS3: 5.6
redhat
почти 4 года назад

An information disclosure flaw was found in Buildah, when building containers using chroot isolation. Running processes in container builds (e.g. Dockerfile RUN commands) can access environment variables from parent and grandparent processes. When run in a container in a CI/CD environment, environment variables may include sensitive information that was shared with the container in order to be used only by Buildah itself (e.g. container registry credentials).

nvd логотип

CVE-2021-3602

CVSS3: 5.5
nvd
больше 3 лет назад

An information disclosure flaw was found in Buildah, when building containers using chroot isolation. Running processes in container builds (e.g. Dockerfile RUN commands) can access environment variables from parent and grandparent processes. When run in a container in a CI/CD environment, environment variables may include sensitive information that was shared with the container in order to be used only by Buildah itself (e.g. container registry credentials).

msrc логотип

CVE-2021-3602

CVSS3: 5.5
msrc
около 1 года назад

Описание отсутствует

debian логотип

CVE-2021-3602

CVSS3: 5.5
debian
больше 3 лет назад

An information disclosure flaw was found in Buildah, when building con ...