RHSA-2021:1796

Description

Red Hat Security Advisory: container-tools:rhel8 security, bug fix, and enhancement update

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Systems

• redhat•buildah

  < 0:1.19.7-1.module+el8.4.0+10607+f4da7515

• redhat•buildah-debuginfo

  < 0:1.19.7-1.module+el8.4.0+10607+f4da7515

• redhat•buildah-debugsource

  < 0:1.19.7-1.module+el8.4.0+10607+f4da7515

• redhat•buildah-tests

  < 0:1.19.7-1.module+el8.4.0+10607+f4da7515

• redhat•buildah-tests-debuginfo

  < 0:1.19.7-1.module+el8.4.0+10607+f4da7515

• redhat•cockpit-podman

  < 0:29-2.module+el8.4.0+10607+f4da7515

• redhat•conmon

  < 2:2.0.26-1.module+el8.4.0+10607+f4da7515

• redhat•conmon-debuginfo

  < 2:2.0.26-1.module+el8.4.0+10607+f4da7515

• redhat•conmon-debugsource

  < 2:2.0.26-1.module+el8.4.0+10607+f4da7515

• redhat•container-selinux

  < 2:2.158.0-1.module+el8.4.0+10607+f4da7515

• redhat•containernetworking-plugins

  < 0:0.9.1-1.module+el8.4.0+10607+f4da7515

• redhat•containernetworking-plugins-debuginfo

  < 0:0.9.1-1.module+el8.4.0+10607+f4da7515

• redhat•containernetworking-plugins-debugsource

  < 0:0.9.1-1.module+el8.4.0+10607+f4da7515

• redhat•containers-common

  < 1:1.2.2-8.module+el8.4.0+10607+f4da7515

• redhat•crit

  < 0:3.15-1.module+el8.4.0+10607+f4da7515

• redhat•criu

  < 0:3.15-1.module+el8.4.0+10607+f4da7515

• redhat•criu-debuginfo

  < 0:3.15-1.module+el8.4.0+10607+f4da7515

• redhat•criu-debugsource

  < 0:3.15-1.module+el8.4.0+10607+f4da7515

• redhat•crun

  < 0:0.18-1.module+el8.4.0+10607+f4da7515

• redhat•crun-debuginfo

  < 0:0.18-1.module+el8.4.0+10607+f4da7515

• redhat•crun-debugsource

  < 0:0.18-1.module+el8.4.0+10607+f4da7515

• redhat•fuse-overlayfs

  < 0:1.4.0-2.module+el8.4.0+10607+f4da7515

• redhat•fuse-overlayfs-debuginfo

  < 0:1.4.0-2.module+el8.4.0+10607+f4da7515

• redhat•fuse-overlayfs-debugsource

  < 0:1.4.0-2.module+el8.4.0+10607+f4da7515

• redhat•libslirp

  < 0:4.3.1-1.module+el8.4.0+10607+f4da7515

• redhat•libslirp-debuginfo

  < 0:4.3.1-1.module+el8.4.0+10607+f4da7515

• redhat•libslirp-debugsource

  < 0:4.3.1-1.module+el8.4.0+10607+f4da7515

• redhat•libslirp-devel

  < 0:4.3.1-1.module+el8.4.0+10607+f4da7515

• redhat•oci-seccomp-bpf-hook

  < 0:1.2.0-2.module+el8.4.0+10607+f4da7515

• redhat•oci-seccomp-bpf-hook-debuginfo

  < 0:1.2.0-2.module+el8.4.0+10607+f4da7515

• redhat•oci-seccomp-bpf-hook-debugsource

  < 0:1.2.0-2.module+el8.4.0+10607+f4da7515

• redhat•podman

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•podman-catatonit

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•podman-catatonit-debuginfo

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•podman-debuginfo

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•podman-debugsource

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•podman-docker

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•podman-plugins

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•podman-plugins-debuginfo

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•podman-remote

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•podman-remote-debuginfo

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•podman-tests

  < 0:3.0.1-6.module+el8.4.0+10607+f4da7515

• redhat•python3-criu

  < 0:3.15-1.module+el8.4.0+10607+f4da7515

• redhat•runc

  < 0:1.0.0-70.rc92.module+el8.4.0+10607+f4da7515

• redhat•runc-debuginfo

  < 0:1.0.0-70.rc92.module+el8.4.0+10607+f4da7515

• redhat•runc-debugsource

  < 0:1.0.0-70.rc92.module+el8.4.0+10607+f4da7515

• redhat•skopeo

  < 1:1.2.2-8.module+el8.4.0+10607+f4da7515

• redhat•skopeo-debuginfo

  < 1:1.2.2-8.module+el8.4.0+10607+f4da7515

• redhat•skopeo-debugsource

  < 1:1.2.2-8.module+el8.4.0+10607+f4da7515

• redhat•skopeo-tests

  < 1:1.2.2-8.module+el8.4.0+10607+f4da7515

Showing first 50 affected entries in server-rendered view.

References (45)

• https://access.redhat.com/errata/RHSA-2021:1796
• https://access.redhat.com/security/updates/classification/#moderate
• https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/
• https://bugzilla.redhat.com/show_bug.cgi?id=1707078
• https://bugzilla.redhat.com/show_bug.cgi?id=1724946
• https://bugzilla.redhat.com/show_bug.cgi?id=1726442
• https://bugzilla.redhat.com/show_bug.cgi?id=1763007
• https://bugzilla.redhat.com/show_bug.cgi?id=1770037
• https://bugzilla.redhat.com/show_bug.cgi?id=1798278
• https://bugzilla.redhat.com/show_bug.cgi?id=1811773
• https://bugzilla.redhat.com/show_bug.cgi?id=1838233
• https://bugzilla.redhat.com/show_bug.cgi?id=1841485
• https://bugzilla.redhat.com/show_bug.cgi?id=1844199
• https://bugzilla.redhat.com/show_bug.cgi?id=1853455
• https://bugzilla.redhat.com/show_bug.cgi?id=1860176
• https://bugzilla.redhat.com/show_bug.cgi?id=1867892
• https://bugzilla.redhat.com/show_bug.cgi?id=1881894
• https://bugzilla.redhat.com/show_bug.cgi?id=1897282
• https://bugzilla.redhat.com/show_bug.cgi?id=1897594
• https://bugzilla.redhat.com/show_bug.cgi?id=1902979
• https://bugzilla.redhat.com/show_bug.cgi?id=1903813
• https://bugzilla.redhat.com/show_bug.cgi?id=1904549
• https://bugzilla.redhat.com/show_bug.cgi?id=1908883
• https://bugzilla.redhat.com/show_bug.cgi?id=1915383
• https://bugzilla.redhat.com/show_bug.cgi?id=1918554
• https://bugzilla.redhat.com/show_bug.cgi?id=1919050
• https://bugzilla.redhat.com/show_bug.cgi?id=1921128
• https://bugzilla.redhat.com/show_bug.cgi?id=1923986
• https://bugzilla.redhat.com/show_bug.cgi?id=1924146
• https://bugzilla.redhat.com/show_bug.cgi?id=1931545
• https://bugzilla.redhat.com/show_bug.cgi?id=1931785
• https://bugzilla.redhat.com/show_bug.cgi?id=1932083
• https://bugzilla.redhat.com/show_bug.cgi?id=1935376
• https://bugzilla.redhat.com/show_bug.cgi?id=1935922
• https://bugzilla.redhat.com/show_bug.cgi?id=1936927
• https://bugzilla.redhat.com/show_bug.cgi?id=1937487
• https://bugzilla.redhat.com/show_bug.cgi?id=1938234
• https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1796.json
• https://access.redhat.com/security/cve/CVE-2020-29652
• https://www.cve.org/CVERecord?id=CVE-2020-29652
• https://nvd.nist.gov/vuln/detail/CVE-2020-29652
• https://groups.google.com/g/golang-announce/c/ouZIlBimOsE?pli=1
• https://access.redhat.com/security/cve/CVE-2021-20199
• https://www.cve.org/CVERecord?id=CVE-2021-20199
• https://nvd.nist.gov/vuln/detail/CVE-2021-20199