RHSA-2022:7822

Description

Red Hat Security Advisory: container-tools:rhel8 security, bug fix, and enhancement update

CVSS Metrics

• v3.1•HIGH•Score: 7.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Affected Systems

• redhat•aardvark-dns

  < 2:1.1.0-5.module+el8.7.0+17064+3b31f55c

• redhat•buildah

  < 1:1.27.2-2.module+el8.7.0+17064+3b31f55c

• redhat•buildah-debuginfo

  < 1:1.27.2-2.module+el8.7.0+17064+3b31f55c

• redhat•buildah-debugsource

  < 1:1.27.2-2.module+el8.7.0+17064+3b31f55c

• redhat•buildah-tests

  < 1:1.27.2-2.module+el8.7.0+17064+3b31f55c

• redhat•buildah-tests-debuginfo

  < 1:1.27.2-2.module+el8.7.0+17064+3b31f55c

• redhat•cockpit-podman

  < 0:53-1.module+el8.7.0+17064+3b31f55c

• redhat•conmon

  < 3:2.1.4-1.module+el8.7.0+17064+3b31f55c

• redhat•conmon-debuginfo

  < 3:2.1.4-1.module+el8.7.0+17064+3b31f55c

• redhat•conmon-debugsource

  < 3:2.1.4-1.module+el8.7.0+17064+3b31f55c

• redhat•container-selinux

  < 2:2.189.0-1.module+el8.7.0+17064+3b31f55c

• redhat•containernetworking-plugins

  < 1:1.1.1-3.module+el8.7.0+17064+3b31f55c

• redhat•containernetworking-plugins-debuginfo

  < 1:1.1.1-3.module+el8.7.0+17064+3b31f55c

• redhat•containernetworking-plugins-debugsource

  < 1:1.1.1-3.module+el8.7.0+17064+3b31f55c

• redhat•containers-common

  < 2:1-43.module+el8.7.0+17064+3b31f55c

• redhat•crit

  < 0:3.15-3.module+el8.7.0+17064+3b31f55c

• redhat•criu

  < 0:3.15-3.module+el8.7.0+17064+3b31f55c

• redhat•criu-debuginfo

  < 0:3.15-3.module+el8.7.0+17064+3b31f55c

• redhat•criu-debugsource

  < 0:3.15-3.module+el8.7.0+17064+3b31f55c

• redhat•criu-devel

  < 0:3.15-3.module+el8.7.0+17064+3b31f55c

• redhat•criu-libs

  < 0:3.15-3.module+el8.7.0+17064+3b31f55c

• redhat•criu-libs-debuginfo

  < 0:3.15-3.module+el8.7.0+17064+3b31f55c

• redhat•crun

  < 0:1.5-1.module+el8.7.0+17064+3b31f55c

• redhat•crun-debuginfo

  < 0:1.5-1.module+el8.7.0+17064+3b31f55c

• redhat•crun-debugsource

  < 0:1.5-1.module+el8.7.0+17064+3b31f55c

• redhat•fuse-overlayfs

  < 0:1.9-1.module+el8.7.0+17064+3b31f55c

• redhat•fuse-overlayfs-debuginfo

  < 0:1.9-1.module+el8.7.0+17064+3b31f55c

• redhat•fuse-overlayfs-debugsource

  < 0:1.9-1.module+el8.7.0+17064+3b31f55c

• redhat•libslirp

  < 0:4.4.0-1.module+el8.7.0+17064+3b31f55c

• redhat•libslirp-debuginfo

  < 0:4.4.0-1.module+el8.7.0+17064+3b31f55c

• redhat•libslirp-debugsource

  < 0:4.4.0-1.module+el8.7.0+17064+3b31f55c

• redhat•libslirp-devel

  < 0:4.4.0-1.module+el8.7.0+17064+3b31f55c

• redhat•netavark

  < 2:1.1.0-7.module+el8.7.0+17064+3b31f55c

• redhat•oci-seccomp-bpf-hook

  < 0:1.2.6-1.module+el8.7.0+17064+3b31f55c

• redhat•oci-seccomp-bpf-hook-debuginfo

  < 0:1.2.6-1.module+el8.7.0+17064+3b31f55c

• redhat•oci-seccomp-bpf-hook-debugsource

  < 0:1.2.6-1.module+el8.7.0+17064+3b31f55c

• redhat•podman

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-catatonit

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-catatonit-debuginfo

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-debuginfo

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-debugsource

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-docker

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-gvproxy

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-gvproxy-debuginfo

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-plugins

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-plugins-debuginfo

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-remote

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-remote-debuginfo

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•podman-tests

  < 3:4.2.0-4.module+el8.7.0+17064+3b31f55c

• redhat•python-podman

  < 0:4.2.1-1.module+el8.7.0+17064+3b31f55c

Showing first 50 affected entries in server-rendered view.

References (30)

• https://access.redhat.com/errata/RHSA-2022:7822
• https://access.redhat.com/security/updates/classification/#low
• https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.7_release_notes/index
• https://bugzilla.redhat.com/show_bug.cgi?id=2121445
• https://bugzilla.redhat.com/show_bug.cgi?id=2121453
• https://bugzilla.redhat.com/show_bug.cgi?id=2125644
• https://bugzilla.redhat.com/show_bug.cgi?id=2125645
• https://bugzilla.redhat.com/show_bug.cgi?id=2125647
• https://bugzilla.redhat.com/show_bug.cgi?id=2125648
• https://bugzilla.redhat.com/show_bug.cgi?id=2125686
• https://bugzilla.redhat.com/show_bug.cgi?id=2129767
• https://bugzilla.redhat.com/show_bug.cgi?id=2130234
• https://bugzilla.redhat.com/show_bug.cgi?id=2130236
• https://bugzilla.redhat.com/show_bug.cgi?id=2130911
• https://bugzilla.redhat.com/show_bug.cgi?id=2132360
• https://bugzilla.redhat.com/show_bug.cgi?id=2132412
• https://bugzilla.redhat.com/show_bug.cgi?id=2132992
• https://bugzilla.redhat.com/show_bug.cgi?id=2133390
• https://bugzilla.redhat.com/show_bug.cgi?id=2136406
• https://bugzilla.redhat.com/show_bug.cgi?id=2136433
• https://bugzilla.redhat.com/show_bug.cgi?id=2136438
• https://bugzilla.redhat.com/show_bug.cgi?id=2137295
• https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_7822.json
• https://access.redhat.com/security/cve/CVE-2022-2989
• https://www.cve.org/CVERecord?id=CVE-2022-2989
• https://nvd.nist.gov/vuln/detail/CVE-2022-2989
• https://www.benthamsgaze.org/2022/08/22/vulnerability-in-linux-containers-investigation-and-mitigation/
• https://access.redhat.com/security/cve/CVE-2022-2990
• https://www.cve.org/CVERecord?id=CVE-2022-2990
• https://nvd.nist.gov/vuln/detail/CVE-2022-2990