exploitDog

SUSE-SU-2023:0795-1

Опубликовано: 17 мар. 2023

Источник: suse-cvrf

Описание

Security update for docker

This update for docker fixes the following issues:

Docker was updated to 20.10.23-ce.

See upstream changelog at https://docs.docker.com/engine/release-notes/#201023

Docker was updated to 20.10.21-ce (bsc#1206065)

See upstream changelog at https://docs.docker.com/engine/release-notes/#201021

Security issues fixed:

CVE-2022-36109: Fixed supplementary group permissions bypass (bsc#1205375)
Fix wrong After: in docker.service, fixes bsc#1188447
Add apparmor-parser as a Recommends to make sure that most users will end up with it installed even if they are primarily running SELinux.
Allow to install container-selinux instead of apparmor-parser.
Change to using systemd-sysusers

Список пакетов

Image SLES15-SP2-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP2-HPC-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP2-SAP-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP2-SAP-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP2-SAP-BYOS-EC2-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP2-SAP-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP2-SAP-EC2-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP2-SAP-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-BYOS-EC2-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-CHOST-BYOS-Aliyun

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-CHOST-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-CHOST-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-CHOST-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-CHOST-BYOS-SAP-CCloud

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-HPC-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-HPC-BYOS-EC2-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-HPC-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Micro-5-1-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Micro-5-1-BYOS-EC2-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Micro-5-1-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Micro-5-2-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Micro-5-2-BYOS-EC2-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-Micro-5-2-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-SAP-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-SAP-BYOS-EC2-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-SAP-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-SAPCAL-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-SAPCAL-EC2-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP3-SAPCAL-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Azure-Basic

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Azure-Standard

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-CHOST-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-CHOST-BYOS-Aliyun

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-CHOST-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-CHOST-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-CHOST-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-CHOST-BYOS-SAP-CCloud

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-EC2-ECS-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-HPC

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-HPC-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-HPC-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-HPC-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-HPC-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-HPC-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-HPC-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-HPC-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Hardened-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Hardened-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Hardened-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Hardened-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Server-4-3

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Server-4-3-Azure-llc

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Server-4-3-Azure-ltd

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Server-4-3-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Server-4-3-EC2-llc

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Manager-Server-4-3-EC2-ltd

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-3

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-3-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-3-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-3-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-3-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-3-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-3-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-3-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-4

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-4-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-4-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-4-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-4-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-4-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-4-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-Micro-5-4-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-Hardened

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-Hardened-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-Hardened-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-Hardened-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-Hardened-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-Hardened-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-Hardened-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAP-Hardened-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAPCAL

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAPCAL-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAPCAL-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP4-SAPCAL-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Azure-3P

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Azure-Basic

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Azure-Standard

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-CHOST-BYOS-Aliyun

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-CHOST-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-CHOST-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-CHOST-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-CHOST-BYOS-GDC

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-CHOST-BYOS-SAP-CCloud

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-EC2-ECS-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-HPC-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-HPC-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-HPC-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-HPC-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-HPC-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-HPC-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Hardened-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Hardened-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Hardened-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Proxy-5-0-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Proxy-5-0-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Proxy-5-0-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Proxy-5-0-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Server-5-0

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Server-5-0-Azure-llc

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Server-5-0-Azure-ltd

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Server-5-0-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Server-5-0-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Server-5-0-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Server-5-0-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Server-5-0-EC2-llc

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Manager-Server-5-0-EC2-ltd

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Micro-5-5

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Micro-5-5-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Micro-5-5-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Micro-5-5-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Micro-5-5-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Micro-5-5-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Micro-5-5-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-Micro-5-5-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-Azure-3P

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-Hardened-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-Hardened-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-Hardened-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-Hardened-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-Hardened-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAP-Hardened-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAPCAL-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAPCAL-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP5-SAPCAL-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-Azure-Basic

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-Azure-Standard

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-CHOST-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-CHOST-BYOS-Aliyun

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-CHOST-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-CHOST-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-CHOST-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-CHOST-BYOS-GDC

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-CHOST-BYOS-SAP-CCloud

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-EC2-ECS-HVM

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-HPC

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-HPC-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-HPC-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-HPC-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-HPC-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-HPC-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-HPC-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-HPC-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-Hardened-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-Hardened-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-Hardened-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-Hardened-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-Hardened

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-Hardened-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-Hardened-BYOS

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-Hardened-BYOS-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-Hardened-BYOS-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-Hardened-BYOS-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-Hardened-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAP-Hardened-GCE

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAPCAL

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAPCAL-Azure

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAPCAL-EC2

docker-20.10.23_ce-150000.175.1

Image SLES15-SP6-SAPCAL-GCE

docker-20.10.23_ce-150000.175.1

SUSE Enterprise Storage 7

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

SUSE Enterprise Storage 7.1

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

docker-fish-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

docker-fish-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

docker-fish-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise Micro 5.1

docker-20.10.23_ce-150000.175.1

SUSE Linux Enterprise Micro 5.2

docker-20.10.23_ce-150000.175.1

SUSE Linux Enterprise Micro 5.3

docker-20.10.23_ce-150000.175.1

SUSE Linux Enterprise Module for Containers 15 SP4

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise Server 15 SP1-LTSS

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise Server 15 SP2-LTSS

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise Server 15 SP3-LTSS

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

docker-fish-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise Server for SAP Applications 15 SP1

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

docker-fish-completion-20.10.23_ce-150000.175.1

openSUSE Leap 15.4

docker-20.10.23_ce-150000.175.1

docker-bash-completion-20.10.23_ce-150000.175.1

docker-fish-completion-20.10.23_ce-150000.175.1

docker-zsh-completion-20.10.23_ce-150000.175.1

openSUSE Leap Micro 5.3

docker-20.10.23_ce-150000.175.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20230795-1/
Link for SUSE-SU-2023:0795-1
https://lists.suse.com/pipermail/sle-security-updates/2023-March/014082.html
E-Mail link for SUSE-SU-2023:0795-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1205375
SUSE Bug 1205375
https://bugzilla.suse.com/1206065
SUSE Bug 1206065
https://www.suse.com/security/cve/CVE-2022-36109/
SUSE CVE CVE-2022-36109 page

Описание

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby (Docker Engine) where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use supplementary group access to bypass primary group restrictions in some cases, potentially gaining access to sensitive information or gaining the ability to execute code in that container. This bug is fixed in Moby (Docker Engine) 20.10.18. Running containers should be stopped and restarted for the permissions to be fixed. For users unable to upgrade, this problem can be worked around by not using the `"USER $USERNAME"` Dockerfile instruction. Instead by calling `ENTRYPOINT ["su", "-", "user"]` the supplementary groups will be set up properly.

Затронутые продукты

Image SLES15-SP2-BYOS-Azure:docker-20.10.23_ce-150000.175.1

Image SLES15-SP2-HPC-BYOS-Azure:docker-20.10.23_ce-150000.175.1

Image SLES15-SP2-SAP-Azure:docker-20.10.23_ce-150000.175.1

Image SLES15-SP2-SAP-BYOS-Azure:docker-20.10.23_ce-150000.175.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-36109.html
CVE-2022-36109
https://bugzilla.suse.com/1205375
SUSE Bug 1205375

Уязвимость SUSE-SU-2023:0795-1