Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2022:7457

Опубликовано: 08 нояб. 2022
Источник: rocky
Оценка: Moderate

Описание

Moderate: container-tools:rhel8 security, bug fix, and enhancement update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

Security Fix(es):

  • golang: net/http/httputil: panic due to racy read of persistConn after handler panic (CVE-2021-36221)

  • cri-o: memory exhaustion on the node when access to the kube api (CVE-2022-1708)

  • golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191)

  • opencontainers: OCI manifest and index parsing confusion (CVE-2021-41190)

  • buildah: possible information disclosure and modification (CVE-2022-2990)

  • runc: incorrect handling of inheritable capabilities (CVE-2022-29162)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 8.7 Release Notes linked from the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
cockpit-podmannoarch1.module+el8.7.0+1078+e72fcd4fcockpit-podman-53-1.module+el8.7.0+1078+e72fcd4f.noarch.rpm
conmonx86_641.module+el8.7.0+1077+0e4f03d4conmon-2.1.4-1.module+el8.7.0+1077+0e4f03d4.x86_64.rpm
containernetworking-pluginsx86_643.module+el8.7.0+1078+e72fcd4fcontainernetworking-plugins-1.1.1-3.module+el8.7.0+1078+e72fcd4f.x86_64.rpm
container-selinuxnoarch1.module+el8.7.0+1076+9b1c11c1container-selinux-2.189.0-1.module+el8.7.0+1076+9b1c11c1.noarch.rpm
critx86_643.module+el8.7.0+1077+0e4f03d4crit-3.15-3.module+el8.7.0+1077+0e4f03d4.x86_64.rpm
criux86_643.module+el8.7.0+1077+0e4f03d4criu-3.15-3.module+el8.7.0+1077+0e4f03d4.x86_64.rpm
criu-develx86_643.module+el8.7.0+1077+0e4f03d4criu-devel-3.15-3.module+el8.7.0+1077+0e4f03d4.x86_64.rpm
criu-libsx86_643.module+el8.7.0+1077+0e4f03d4criu-libs-3.15-3.module+el8.7.0+1077+0e4f03d4.x86_64.rpm
crunx86_641.module+el8.7.0+1077+0e4f03d4crun-1.5-1.module+el8.7.0+1077+0e4f03d4.x86_64.rpm
fuse-overlayfsx86_641.module+el8.7.0+1077+0e4f03d4fuse-overlayfs-1.9-1.module+el8.7.0+1077+0e4f03d4.x86_64.rpm

Показывать по

Связанные CVE

CVE-2021-36221
CVE-2021-41190
CVE-2022-1708
CVE-2022-27191
CVE-2022-29162
CVE-2022-2990

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2022-7457

oracle-oval
больше 2 лет назад

ELSA-2022-7457: container-tools:ol8 security, bug fix, and enhancement update (MODERATE)

ubuntu логотип

CVE-2021-36221

CVSS3: 5.9
ubuntu
почти 4 года назад

Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort.

redhat логотип

CVE-2021-36221

CVSS3: 5.9
redhat
почти 4 года назад

Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort.

nvd логотип

CVE-2021-36221

CVSS3: 5.9
nvd
почти 4 года назад

Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort.

msrc логотип

CVE-2021-36221

CVSS3: 5.9
msrc
почти 4 года назад

Описание отсутствует