SUSE-SU-2020:0375-1

Опубликовано: 07 фев. 2020

Источник: suse-cvrf

Описание

Security update for docker-runc

This update for docker-runc fixes the following issues:

CVE-2019-19921: Fixed a volume mount race condition with shared mounts (bsc#1160452).

Список пакетов

SUSE Linux Enterprise Module for Containers 15 SP1

docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.32.1

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20200375-1/
Link for SUSE-SU-2020:0375-1
https://lists.suse.com/pipermail/sle-security-updates/2020-February/006478.html
E-Mail link for SUSE-SU-2020:0375-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1160452
SUSE Bug 1160452
https://www.suse.com/security/cve/CVE-2019-19921/
SUSE CVE CVE-2019-19921 page

Описание

runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vulnerability does not affect Docker due to an implementation detail that happens to block the attack.)

Затронутые продукты

SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.32.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-19921.html
CVE-2019-19921
https://bugzilla.suse.com/1160452
SUSE Bug 1160452
https://bugzilla.suse.com/1208962
SUSE Bug 1208962

SUSE-SU-2020:0375-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Containers 15 SP1

Ссылки

Уязвимость: CVE-2019-19921

Описание

Затронутые продукты

Ссылки