[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2021:0278-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":20,"duplicates":21,"related":22,"reserved_at":9,"published_at":26,"modified_at":27,"state":9,"summary":28,"references_raw":30,"kevs":83,"epss":9,"epss_history":84,"metrics":85,"affected":86},"OPENSUSE-SU-2021:0278-1","Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork\n\nThis update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2020-15257: Fixed a privilege escalation in containerd (bsc#1178969).\n- CVE-2021-21284: potential privilege escalation when the root user in the remapped namespace has access to the host filesystem (bsc#1181732)\n- CVE-2021-21285: pulling a malformed Docker image manifest crashes the dockerd daemon (bsc#1181730)\n\nNon-security issues fixed:\n\n- Update Docker to 19.03.15-ce. See upstream changelog in the packaged\n  /usr/share/doc/packages/docker/CHANGELOG.md. This update includes fixes for\n  bsc#1181732 (CVE-2021-21284) and bsc#1181730 (CVE-2021-21285).\n\n- Only apply the boo#1178801 libnetwork patch to handle firewalld on openSUSE.\n  It appears that SLES doesn't like the patch. (bsc#1180401)\n\n- Update to containerd v1.3.9, which is needed for Docker v19.03.14-ce and\n  fixes CVE-2020-15257. bsc#1180243\n\n- Update to containerd v1.3.7, which is required for Docker 19.03.13-ce.\n  bsc#1176708\n\n- Update to Docker 19.03.14-ce. See upstream changelog in the packaged\n  /usr/share/doc/packages/docker/CHANGELOG.md. CVE-2020-15257 bsc#1180243\n  https://github.com/docker/docker-ce/releases/tag/v19.03.14\n\n- Enable fish-completion\n\n- Add a patch which makes Docker compatible with firewalld with\n  nftables backend. Backport of https://github.com/moby/libnetwork/pull/2548\n  (bsc#1178801, SLE-16460)\n\n- Update to Docker 19.03.13-ce. See upstream changelog in the packaged\n  /usr/share/doc/packages/docker/CHANGELOG.md. bsc#1176708\n\n- Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075)\n\n- Emergency fix: %requires_eq does not work with provide symbols,\n  only effective package names. Convert back to regular Requires.\n\n- Update to Docker 19.03.12-ce. See upstream changelog in the packaged\n  /usr/share/doc/packages/docker/CHANGELOG.md.\n- Use Go 1.13 instead of Go 1.14 because Go 1.14 can cause all sorts of\n  spurrious errors due to Go returning -EINTR from I/O syscalls much more often\n  (due to Go 1.14's pre-emptive goroutine support).\n- Add BuildRequires for all -git dependencies so that we catch missing\n  dependencies much more quickly.\n\n- Update to libnetwork 55e924b8a842, which is required for Docker 19.03.14-ce.\n  bsc#1180243\n\n- Add patch which makes libnetwork compatible with firewalld with\n  nftables backend. Backport of https://github.com/moby/libnetwork/pull/2548\n  (bsc#1178801, SLE-16460)\n\nThis update was imported from the SUSE:SLE-15:Update update project.",null,[],[],[],[14,16,18],{"_key":15},"CVE-2020-15257",{"_key":17},"CVE-2021-21284",{"_key":19},"CVE-2021-21285",[],[],[23,24,25],{"_key":15},{"_key":17},{"_key":19},"2021-02-12T00:12:41Z","2026-02-04T02:37:51.083620Z",{"cisa_kev":29,"cisa_ransomware":29,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[31,37,42,46,50,54,58,62,66,70,75,79],{"url":32,"sources":33,"tags":35},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UGKTLORCQ4MPZPDFGWKJEEPQRXFUTZYZ/",[34],"osv_opensuse",[36],"Advisory",{"url":38,"sources":39,"tags":40},"https://bugzilla.suse.com/1174075",[34],[41],"REPORT",{"url":43,"sources":44,"tags":45},"https://bugzilla.suse.com/1176708",[34],[41],{"url":47,"sources":48,"tags":49},"https://bugzilla.suse.com/1178801",[34],[41],{"url":51,"sources":52,"tags":53},"https://bugzilla.suse.com/1178969",[34],[41],{"url":55,"sources":56,"tags":57},"https://bugzilla.suse.com/1180243",[34],[41],{"url":59,"sources":60,"tags":61},"https://bugzilla.suse.com/1180401",[34],[41],{"url":63,"sources":64,"tags":65},"https://bugzilla.suse.com/1181730",[34],[41],{"url":67,"sources":68,"tags":69},"https://bugzilla.suse.com/1181732",[34],[41],{"url":71,"sources":72,"tags":73},"https://www.suse.com/security/cve/CVE-2020-15257",[34],[74],"WEB",{"url":76,"sources":77,"tags":78},"https://www.suse.com/security/cve/CVE-2021-21284",[34],[74],{"url":80,"sources":81,"tags":82},"https://www.suse.com/security/cve/CVE-2021-21285",[34],[74],[],[],[],[87,100,107,114,121],{"ecosystem":88,"name":89,"vendor":90,"product":91,"cpe_part":9,"purl_type":92,"purl_namespace":90,"purl_name":91,"source":9,"versions":93},"openSUSE","containerd","opensuse","containerd&distro=openSUSE Leap 15.2","rpm",[94],{"version":95,"is_range":96,"range_type":97,"version_start":9,"version_start_type":9,"version_end":98,"version_end_type":99,"fixed_in":9},"lt1_3_9_lp152_2_3_1",true,"ecosystem","1.3.9-lp152.2.3.1","excluding",{"ecosystem":88,"name":101,"vendor":90,"product":102,"cpe_part":9,"purl_type":92,"purl_namespace":90,"purl_name":102,"source":9,"versions":103},"docker-runc","docker-runc&distro=openSUSE Leap 15.2",[104],{"version":105,"is_range":96,"range_type":97,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":99,"fixed_in":9},"lt1_0_0rc10+gitr3981_dc9208a3303f_lp152_2_3_1","1.0.0rc10+gitr3981_dc9208a3303f-lp152.2.3.1",{"ecosystem":88,"name":108,"vendor":90,"product":109,"cpe_part":9,"purl_type":92,"purl_namespace":90,"purl_name":109,"source":9,"versions":110},"docker","docker&distro=openSUSE Leap 15.2",[111],{"version":112,"is_range":96,"range_type":97,"version_start":9,"version_start_type":9,"version_end":113,"version_end_type":99,"fixed_in":9},"lt19_03_15_ce_lp152_2_3_1","19.03.15_ce-lp152.2.3.1",{"ecosystem":88,"name":115,"vendor":90,"product":116,"cpe_part":9,"purl_type":92,"purl_namespace":90,"purl_name":116,"source":9,"versions":117},"fish","fish&distro=openSUSE Leap 15.2",[118],{"version":119,"is_range":96,"range_type":97,"version_start":9,"version_start_type":9,"version_end":120,"version_end_type":99,"fixed_in":9},"lt2_7_1_lp152_5_3_1","2.7.1-lp152.5.3.1",{"ecosystem":88,"name":122,"vendor":90,"product":123,"cpe_part":9,"purl_type":92,"purl_namespace":90,"purl_name":123,"source":9,"versions":124},"golang-github-docker-libnetwork","golang-github-docker-libnetwork&distro=openSUSE Leap 15.2",[125],{"version":126,"is_range":96,"range_type":97,"version_start":9,"version_start_type":9,"version_end":127,"version_end_type":99,"fixed_in":9},"lt0_7_0_1+gitr2908_55e924b8a842_lp152_2_3_1","0.7.0.1+gitr2908_55e924b8a842-lp152.2.3.1"]