RHSA-2022:1407

Description

Red Hat Security Advisory: container-tools:2.0 security and bug fix update

CVSS Metrics

• v3.1•MEDIUM•Score: 5CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

Affected Systems

• redhat•buildah

  < 0:1.11.6-9.module+el8.4.0+14792+f44be4c2

• redhat•buildah-debuginfo

  < 0:1.11.6-9.module+el8.4.0+14792+f44be4c2

• redhat•buildah-debugsource

  < 0:1.11.6-9.module+el8.4.0+14792+f44be4c2

• redhat•buildah-tests

  < 0:1.11.6-9.module+el8.4.0+14792+f44be4c2

• redhat•buildah-tests-debuginfo

  < 0:1.11.6-9.module+el8.4.0+14792+f44be4c2

• redhat•cockpit-podman

  < 0:11-1.module+el8.4.0+14792+f44be4c2

• redhat•conmon

  < 2:2.0.15-1.module+el8.4.0+14792+f44be4c2

• redhat•container-selinux

  < 2:2.130.0-1.module+el8.4.0+14792+f44be4c2

• redhat•containernetworking-plugins

  < 0:0.8.3-4.module+el8.4.0+14792+f44be4c2

• redhat•containernetworking-plugins-debuginfo

  < 0:0.8.3-4.module+el8.4.0+14792+f44be4c2

• redhat•containernetworking-plugins-debugsource

  < 0:0.8.3-4.module+el8.4.0+14792+f44be4c2

• redhat•containers-common

  < 1:0.1.41-4.module+el8.4.0+14792+f44be4c2

• redhat•crit

  < 0:3.12-9.module+el8.4.0+14792+f44be4c2

• redhat•criu

  < 0:3.12-9.module+el8.4.0+14792+f44be4c2

• redhat•criu-debuginfo

  < 0:3.12-9.module+el8.4.0+14792+f44be4c2

• redhat•criu-debugsource

  < 0:3.12-9.module+el8.4.0+14792+f44be4c2

• redhat•fuse-overlayfs

  < 0:0.7.8-1.module+el8.4.0+14792+f44be4c2

• redhat•fuse-overlayfs-debuginfo

  < 0:0.7.8-1.module+el8.4.0+14792+f44be4c2

• redhat•fuse-overlayfs-debugsource

  < 0:0.7.8-1.module+el8.4.0+14792+f44be4c2

• redhat•podman

  < 0:1.6.4-28.module+el8.4.0+14792+f44be4c2

• redhat•podman-debuginfo

  < 0:1.6.4-28.module+el8.4.0+14792+f44be4c2

• redhat•podman-debugsource

  < 0:1.6.4-28.module+el8.4.0+14792+f44be4c2

• redhat•podman-docker

  < 0:1.6.4-28.module+el8.4.0+14792+f44be4c2

• redhat•podman-remote

  < 0:1.6.4-28.module+el8.4.0+14792+f44be4c2

• redhat•podman-remote-debuginfo

  < 0:1.6.4-28.module+el8.4.0+14792+f44be4c2

• redhat•podman-tests

  < 0:1.6.4-28.module+el8.4.0+14792+f44be4c2

• redhat•python-podman-api

  < 0:1.2.0-0.2.gitd0a45fe.module+el8.4.0+14792+f44be4c2

• redhat•python3-criu

  < 0:3.12-9.module+el8.4.0+14792+f44be4c2

• redhat•runc

  < 0:1.0.0-65.rc10.module+el8.4.0+14792+f44be4c2

• redhat•runc-debuginfo

  < 0:1.0.0-65.rc10.module+el8.4.0+14792+f44be4c2

• redhat•runc-debugsource

  < 0:1.0.0-65.rc10.module+el8.4.0+14792+f44be4c2

• redhat•skopeo

  < 1:0.1.41-4.module+el8.4.0+14792+f44be4c2

• redhat•skopeo-debuginfo

  < 1:0.1.41-4.module+el8.4.0+14792+f44be4c2

• redhat•skopeo-debugsource

  < 1:0.1.41-4.module+el8.4.0+14792+f44be4c2

• redhat•skopeo-tests

  < 1:0.1.41-4.module+el8.4.0+14792+f44be4c2

• redhat•slirp4netns

  < 0:0.4.2-3.git21fdece.module+el8.4.0+14792+f44be4c2

• redhat•slirp4netns-debuginfo

  < 0:0.4.2-3.git21fdece.module+el8.4.0+14792+f44be4c2

• redhat•slirp4netns-debugsource

  < 0:0.4.2-3.git21fdece.module+el8.4.0+14792+f44be4c2

• redhat•toolbox

  < 0:0.0.7-1.module+el8.4.0+14792+f44be4c2

• redhat•udica

  < 0:0.2.1-2.module+el8.4.0+14792+f44be4c2

References (13)

• https://access.redhat.com/errata/RHSA-2022:1407
• https://access.redhat.com/security/updates/classification/#moderate
• https://bugzilla.redhat.com/show_bug.cgi?id=2066568
• https://bugzilla.redhat.com/show_bug.cgi?id=2066840
• https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_1407.json
• https://access.redhat.com/security/cve/CVE-2022-27649
• https://www.cve.org/CVERecord?id=CVE-2022-27649
• https://nvd.nist.gov/vuln/detail/CVE-2022-27649
• https://github.com/containers/podman/security/advisories/GHSA-qvf8-p83w-v58j
• https://access.redhat.com/security/cve/CVE-2022-27651
• https://www.cve.org/CVERecord?id=CVE-2022-27651
• https://nvd.nist.gov/vuln/detail/CVE-2022-27651
• https://github.com/containers/buildah/security/advisories/GHSA-c3g4-w6cv-6v7h