RHSA-2022:1762

Description

Red Hat Security Advisory: container-tools:rhel8 security, bug fix, and enhancement update

CVSS Metrics

• v3.1•HIGH•Score: 8CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Affected Systems

• redhat•aardvark-dns

  < 2:1.0.1-27.module+el8.6.0+14673+621cb8be

• redhat•buildah

  < 1:1.24.2-4.module+el8.6.0+14673+621cb8be

• redhat•buildah-debuginfo

  < 1:1.24.2-4.module+el8.6.0+14673+621cb8be

• redhat•buildah-debugsource

  < 1:1.24.2-4.module+el8.6.0+14673+621cb8be

• redhat•buildah-tests

  < 1:1.24.2-4.module+el8.6.0+14673+621cb8be

• redhat•buildah-tests-debuginfo

  < 1:1.24.2-4.module+el8.6.0+14673+621cb8be

• redhat•cockpit-podman

  < 0:43-1.module+el8.6.0+14673+621cb8be

• redhat•conmon

  < 2:2.1.0-1.module+el8.6.0+14673+621cb8be

• redhat•conmon-debuginfo

  < 2:2.1.0-1.module+el8.6.0+14673+621cb8be

• redhat•conmon-debugsource

  < 2:2.1.0-1.module+el8.6.0+14673+621cb8be

• redhat•container-selinux

  < 2:2.179.1-1.module+el8.6.0+14673+621cb8be

• redhat•containernetworking-plugins

  < 1:1.0.1-2.module+el8.6.0+14673+621cb8be

• redhat•containernetworking-plugins-debuginfo

  < 1:1.0.1-2.module+el8.6.0+14673+621cb8be

• redhat•containernetworking-plugins-debugsource

  < 1:1.0.1-2.module+el8.6.0+14673+621cb8be

• redhat•containers-common

  < 2:1-27.module+el8.6.0+14673+621cb8be

• redhat•crit

  < 0:3.15-3.module+el8.6.0+14673+621cb8be

• redhat•criu

  < 0:3.15-3.module+el8.6.0+14673+621cb8be

• redhat•criu-debuginfo

  < 0:3.15-3.module+el8.6.0+14673+621cb8be

• redhat•criu-debugsource

  < 0:3.15-3.module+el8.6.0+14673+621cb8be

• redhat•criu-devel

  < 0:3.15-3.module+el8.6.0+14673+621cb8be

• redhat•criu-libs

  < 0:3.15-3.module+el8.6.0+14673+621cb8be

• redhat•criu-libs-debuginfo

  < 0:3.15-3.module+el8.6.0+14673+621cb8be

• redhat•crun

  < 0:1.4.4-1.module+el8.6.0+14673+621cb8be

• redhat•crun-debuginfo

  < 0:1.4.4-1.module+el8.6.0+14673+621cb8be

• redhat•crun-debugsource

  < 0:1.4.4-1.module+el8.6.0+14673+621cb8be

• redhat•fuse-overlayfs

  < 0:1.8.2-1.module+el8.6.0+14673+621cb8be

• redhat•fuse-overlayfs-debuginfo

  < 0:1.8.2-1.module+el8.6.0+14673+621cb8be

• redhat•fuse-overlayfs-debugsource

  < 0:1.8.2-1.module+el8.6.0+14673+621cb8be

• redhat•libslirp

  < 0:4.4.0-1.module+el8.6.0+14673+621cb8be

• redhat•libslirp-debuginfo

  < 0:4.4.0-1.module+el8.6.0+14673+621cb8be

• redhat•libslirp-debugsource

  < 0:4.4.0-1.module+el8.6.0+14673+621cb8be

• redhat•libslirp-devel

  < 0:4.4.0-1.module+el8.6.0+14673+621cb8be

• redhat•netavark

  < 2:1.0.1-27.module+el8.6.0+14673+621cb8be

• redhat•oci-seccomp-bpf-hook

  < 0:1.2.3-3.module+el8.6.0+14673+621cb8be

• redhat•oci-seccomp-bpf-hook-debuginfo

  < 0:1.2.3-3.module+el8.6.0+14673+621cb8be

• redhat•oci-seccomp-bpf-hook-debugsource

  < 0:1.2.3-3.module+el8.6.0+14673+621cb8be

• redhat•podman

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-catatonit

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-catatonit-debuginfo

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-debuginfo

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-debugsource

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-docker

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-gvproxy

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-gvproxy-debuginfo

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-plugins

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-plugins-debuginfo

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-remote

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-remote-debuginfo

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•podman-tests

  < 2:4.0.2-6.module+el8.6.0+14673+621cb8be

• redhat•python-podman

  < 0:4.0.0-1.module+el8.6.0+14673+621cb8be

Showing first 50 affected entries in server-rendered view.

References (56)

• https://access.redhat.com/errata/RHSA-2022:1762
• https://access.redhat.com/security/updates/classification/#important
• https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.6_release_notes/
• https://bugzilla.redhat.com/show_bug.cgi?id=1861760
• https://bugzilla.redhat.com/show_bug.cgi?id=1967642
• https://bugzilla.redhat.com/show_bug.cgi?id=1982164
• https://bugzilla.redhat.com/show_bug.cgi?id=1982784
• https://bugzilla.redhat.com/show_bug.cgi?id=1995900
• https://bugzilla.redhat.com/show_bug.cgi?id=1998835
• https://bugzilla.redhat.com/show_bug.cgi?id=2000914
• https://bugzilla.redhat.com/show_bug.cgi?id=2002721
• https://bugzilla.redhat.com/show_bug.cgi?id=2004993
• https://bugzilla.redhat.com/show_bug.cgi?id=2005972
• https://bugzilla.redhat.com/show_bug.cgi?id=2006678
• https://bugzilla.redhat.com/show_bug.cgi?id=2009047
• https://bugzilla.redhat.com/show_bug.cgi?id=2009296
• https://bugzilla.redhat.com/show_bug.cgi?id=2017266
• https://bugzilla.redhat.com/show_bug.cgi?id=2018949
• https://bugzilla.redhat.com/show_bug.cgi?id=2023112
• https://bugzilla.redhat.com/show_bug.cgi?id=2024229
• https://bugzilla.redhat.com/show_bug.cgi?id=2025336
• https://bugzilla.redhat.com/show_bug.cgi?id=2030599
• https://bugzilla.redhat.com/show_bug.cgi?id=2045880
• https://bugzilla.redhat.com/show_bug.cgi?id=2055487
• https://bugzilla.redhat.com/show_bug.cgi?id=2059754
• https://bugzilla.redhat.com/show_bug.cgi?id=2065292
• https://bugzilla.redhat.com/show_bug.cgi?id=2065707
• https://bugzilla.redhat.com/show_bug.cgi?id=2066568
• https://bugzilla.redhat.com/show_bug.cgi?id=2066840
• https://bugzilla.redhat.com/show_bug.cgi?id=2066845
• https://bugzilla.redhat.com/show_bug.cgi?id=2070368
• https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_1762.json
• https://access.redhat.com/security/cve/CVE-2020-28851
• https://bugzilla.redhat.com/show_bug.cgi?id=1913333
• https://www.cve.org/CVERecord?id=CVE-2020-28851
• https://nvd.nist.gov/vuln/detail/CVE-2020-28851
• https://access.redhat.com/security/cve/CVE-2022-1227
• https://www.cve.org/CVERecord?id=CVE-2022-1227
• https://nvd.nist.gov/vuln/detail/CVE-2022-1227
• https://github.com/containers/podman/issues/10941
• https://access.redhat.com/security/cve/CVE-2022-21698
• https://www.cve.org/CVERecord?id=CVE-2022-21698
• https://nvd.nist.gov/vuln/detail/CVE-2022-21698
• https://github.com/prometheus/client_golang/security/advisories/GHSA-cg3q-j54f-5p7p
• https://access.redhat.com/security/cve/CVE-2022-27649
• https://www.cve.org/CVERecord?id=CVE-2022-27649
• https://nvd.nist.gov/vuln/detail/CVE-2022-27649
• https://github.com/containers/podman/security/advisories/GHSA-qvf8-p83w-v58j
• https://access.redhat.com/security/cve/CVE-2022-27650
• https://www.cve.org/CVERecord?id=CVE-2022-27650
• https://nvd.nist.gov/vuln/detail/CVE-2022-27650
• https://github.com/containers/crun/security/advisories/GHSA-wr4f-w546-m398
• https://access.redhat.com/security/cve/CVE-2022-27651
• https://www.cve.org/CVERecord?id=CVE-2022-27651
• https://nvd.nist.gov/vuln/detail/CVE-2022-27651
• https://github.com/containers/buildah/security/advisories/GHSA-c3g4-w6cv-6v7h