SUSE-SU-2023:4625-1
Advisory lineage Upstream: 3 Downstream: 0
Published: 01 Dec 2023, 08:26
Last modified:02 May 2025, 04:30
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
01 Dec 2023, 08:26
Published
Vulnerability first disclosed
02 May 2025, 04:30
Last Modified
Vulnerability information updated
Description
Security update for containerd, docker, runc This update for containerd, docker, runc fixes the following issues: containerd: -Update to containerd v1.7.8. Upstream release notes: https://github.com/containerd/containerd/releases/tag/v1.7.8 docker: - Update to Docker 24.0.7-ce. See upstream changelong online at https://docs.docker.com/engine/release-notes/24.0/#2407 (bsc#1217513) * Deny containers access to /sys/devices/virtual/powercap by default. - CVE-2020-8694 bsc#1170415 - CVE-2020-8695 bsc#1170446 - CVE-2020-12912 bsc#1178760 runc: - Update to runc v1.1.10. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.10
Affected Systems
- suse•containerd&distro=SUSE Linux Enterprise Module for Containers 12
< 1.7.8-16.88.1
- suse•docker&distro=SUSE Linux Enterprise Module for Containers 12
< 24.0.7_ce-98.103.1
- suse•runc&distro=SUSE Linux Enterprise Module for Containers 12
< 1.1.10-16.40.1
References (8)
- https://www.suse.com/support/update/announcement/2023/suse-su-20234625-1/
- https://bugzilla.suse.com/1170415
- https://bugzilla.suse.com/1170446
- https://bugzilla.suse.com/1178760
- https://bugzilla.suse.com/1217513
- https://www.suse.com/security/cve/CVE-2020-12912
- https://www.suse.com/security/cve/CVE-2020-8694
- https://www.suse.com/security/cve/CVE-2020-8695