OPENSUSE-SU-2021:0878-1

Advisory lineage Upstream: 4 Downstream: 0
Published: 16 Jun 2021, 13:54
Last modified:04 Feb 2026, 04:35

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

16 Jun 2021, 13:54
Published
Vulnerability first disclosed
04 Feb 2026, 04:35
Last Modified
Vulnerability information updated

Description

Security update for containerd, docker, runc This update for containerd, docker, runc fixes the following issues: Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594) * Switch version to use -ce suffix rather than _ce to avoid confusing other tools (bsc#1182476). * CVE-2021-21284: Fixed a potential privilege escalation when the root user in the remapped namespace has access to the host filesystem (bsc#1181732) * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest crashes the dockerd daemon (bsc#1181730). * btrfs quotas being removed by Docker regularly (bsc#1183855, bsc#1175081) runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962). * Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821). * Fixed /dev/null is not available (bsc#1168481). * CVE-2021-30465: Fixed a symlink-exchange attack vulnarability (bsc#1185405). containerd was updated to v1.4.4 * CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397). * Handle a requirement from docker (bsc#1181594). This update was imported from the SUSE:SLE-15:Update update project.

Affected Systems

  • opensusecontainerd&distro=openSUSE Leap 15.2

    < 1.4.4-lp152.2.6.1

  • opensusedocker&distro=openSUSE Leap 15.2

    < 20.10.6_ce-lp152.2.12.1

  • opensuserunc&distro=openSUSE Leap 15.2

    < 1.0.0~rc93-lp152.2.3.1

References (22)