container-tools:2.0 security update
エラータID: AXSA:2021-2355:01
Release date:
Friday, August 13, 2021 - 01:46
Subject:
container-tools:2.0 security update
Affected Channels:
Asianux Server 8 for x86_64
Severity:
High
Description:
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
Security Fix(es):
* runc: vulnerable to symlink exchange attack (CVE-2021-30465)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2021-30465
runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.
Modularity name: container-tools
Stream name: 2.0
Solution:
Update packages.
CVEs:
CVE-2021-30465
runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.
runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.
Additional Info:
N/A
Download:
SRPMS
- buildah-1.11.6-8.module+el8+1278+ccdd7776.src.rpm
MD5: 777af49972cf3faa2bec4cd7f57e4b83
SHA-256: f3e5e7adb10dfac0f1f7cffdaf4a4ab07ff50fa1314e23d5fa13a23ab623a23d
Size: 9.85 MB - cockpit-podman-11-1.module+el8+1278+ccdd7776.src.rpm
MD5: 9b3a61c0d241324a92a92f3646f71d79
SHA-256: 58887ffef25781ecfbc1858e96e6649529503f752dd4e8826daf4c6220cb6e8a
Size: 1.36 MB - conmon-2.0.15-1.module+el8+1278+ccdd7776.src.rpm
MD5: 8e8928c39131527d5116f10a0e98aa3d
SHA-256: ef020be0eb420afd86030ab7f38b50138a536828b6a54981723b48e834642ec2
Size: 68.79 kB - containernetworking-plugins-0.8.3-4.module+el8+1278+ccdd7776.src.rpm
MD5: ac1e46c5a64de26ee880833258b88100
SHA-256: b416e24b8cd59256250a0813151b0d0e0bcf5ae53f2f5f5e407a8f386ff62e9d
Size: 1.86 MB - container-selinux-2.130.0-1.module+el8+1278+ccdd7776.src.rpm
MD5: f348a1d5b21dddc06fa85311f5a8b7d0
SHA-256: 8ab930c06a2146e5fac86e9cf2970a7ab4d79aa05f57c32b0f81975abb8bd512
Size: 44.06 kB - criu-3.12-9.module+el8+1278+ccdd7776.src.rpm
MD5: 090c5752cb3f94d5b7ce3edd17b537d0
SHA-256: 443e3ea5035c5937c970a5257e521454243f66afb895e282fbcf00e96e454fa9
Size: 831.11 kB - fuse-overlayfs-0.7.8-1.module+el8+1278+ccdd7776.src.rpm
MD5: 2bf60568f1eb8cd5b0dbcd0eb99be793
SHA-256: 98ee96d867495a15114bbe75a23c29f7ea69c03797df309286c17c5656f9442b
Size: 103.67 kB - podman-1.6.4-26.module+el8+1278+ccdd7776.src.rpm
MD5: 25e3b01f6453cd2a176119b51f582851
SHA-256: ee6812f03b3d8a27413afb4fc1ef576b8cc0728120ec28ad0d465d71fa9c3f26
Size: 7.67 MB - python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8+1278+ccdd7776.src.rpm
MD5: 78f32d05bd4b6a9f1e41332eafc79a58
SHA-256: a132e02670cfe7381a2287e125485494a6341ac060861eb7a7816beb8591812b
Size: 39.40 kB - runc-1.0.0-65.rc10.module+el8+1278+ccdd7776.src.rpm
MD5: 8bda531ae8b0a25b6d1f90200f563b1b
SHA-256: 63bf8625833600fe3ee6a9cebf367f3d74801364eb75645d0970d9c2b3703e08
Size: 1.80 MB - skopeo-0.1.41-4.module+el8+1278+ccdd7776.src.rpm
MD5: 29ae380e89d9b67bc940f44762db2452
SHA-256: e64b72bf28cf698548aca2b08c4ad92ae082274b5d29a6570e63b61d4d0a4c7c
Size: 4.42 MB - slirp4netns-0.4.2-3.git21fdece.module+el8+1278+ccdd7776.src.rpm
MD5: 5a3fb1f15bec69fe451110bdbf29cd82
SHA-256: 75aea60e9e2a80ef8422345add00056d026fa8ef356ab0258d88de3fa3dfd208
Size: 178.57 kB - toolbox-0.0.7-1.module+el8+1278+ccdd7776.src.rpm
MD5: dd18fab6475b43576d79deb411e5f4f8
SHA-256: d9851a1fc7d25460d359494c96dd478838fc7991ceae7f65d8fc7d60c01429c5
Size: 18.80 kB - udica-0.2.1-2.module+el8+1278+ccdd7776.src.rpm
MD5: 04867bf082190ddf398b636aa0c60c50
SHA-256: afbb36741ea99e3d00081c6e717167dc81cee9ea72df929ccf12b80ea4387604
Size: 128.17 kB
Asianux Server 8 for x86_64
- buildah-1.11.6-8.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 473bfbbf2c6ca1bfd3cfc6dfe9d83f88
SHA-256: ea479fda83da66d58bf93b57c88f728adc53db250b1686c0dbb83ecea2942e80
Size: 7.50 MB - buildah-debugsource-1.11.6-8.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 80abf4eb26733ec7df06636990ec9172
SHA-256: d83f47f3868ebbd136c92e669f5ff21d9449873f5337915179409738d13295c1
Size: 2.38 MB - buildah-tests-1.11.6-8.module+el8+1278+ccdd7776.x86_64.rpm
MD5: d96e9afa1ea8d108a13a8793bdede867
SHA-256: 38308410a6a97db8f0ad1d926dfec31671632df55e9b997130c08dc7f72a4a1b
Size: 9.07 MB - cockpit-podman-11-1.module+el8+1278+ccdd7776.noarch.rpm
MD5: 9353b53fe49a1b3129bca4563022512c
SHA-256: 6ab5342b62d07a2a3d006604dc2be7ffdc2349b2aa2fa351d3a96b59fda7a456
Size: 1.02 MB - conmon-2.0.15-1.module+el8+1278+ccdd7776.x86_64.rpm
MD5: ea381dc55dd28f1bffa036c283ff6afe
SHA-256: 35d8a1b875280dfade281b7ba03685e37c2fc9931e57cbdb0f97148bbf6501ad
Size: 37.31 kB - containernetworking-plugins-0.8.3-4.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 211be6ebeaa330e77565190185eed531
SHA-256: ca5213618f7f43f678d29980a2780aa2a327547071db0cf947cf8f0135c21646
Size: 18.24 MB - containernetworking-plugins-debugsource-0.8.3-4.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 084fa07d2bba6b48b07aec9f5d65e2a2
SHA-256: 797d1cfd8eb31d02d61b84fd1cca2cb580e4a2200ae4f7fcbf18e75e47a9019a
Size: 301.27 kB - container-selinux-2.130.0-1.module+el8+1278+ccdd7776.noarch.rpm
MD5: 40fb49646abcdec059e82b40027b8a10
SHA-256: 8a2c77c3db65ae16c151b833b7c83d57f785233531329f5dcc6c7eaf00d23ad3
Size: 46.22 kB - crit-3.12-9.module+el8+1278+ccdd7776.x86_64.rpm
MD5: f229b0f71b7741d81a3ea07787512567
SHA-256: faf95338a6d1e8916320db04dc8e8808ddf49282887c232dd5bceca6deead87e
Size: 18.00 kB - criu-3.12-9.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 3faf074a1be7b1002fb6abe304220ed4
SHA-256: 83cbc80a5f32c82e62e255a309eac97406c9d14b45ef93306c1c8c57635502b2
Size: 481.17 kB - criu-debugsource-3.12-9.module+el8+1278+ccdd7776.x86_64.rpm
MD5: be689f0841ac97db81fac20cc815608f
SHA-256: e7c93fc93fcf2ac93d3bf3e91dc00ce406e5023cbaf2046c4128cef3ea041710
Size: 622.97 kB - python3-criu-3.12-9.module+el8+1278+ccdd7776.x86_64.rpm
MD5: e7c58d2ecbd99652c4481769f59ff2c7
SHA-256: b5cab774497a93d1f799309146d9c60f27d2fc297b50650b6e99f49f4e8c7430
Size: 155.81 kB - fuse-overlayfs-0.7.8-1.module+el8+1278+ccdd7776.x86_64.rpm
MD5: d11ed1bdd0fddba4af76ccf0e30d92d4
SHA-256: 3a0e4ea94f25f6d49c55f6342782e9798a6439d57b0b13f0c5b38302b1eda906
Size: 58.78 kB - fuse-overlayfs-debugsource-0.7.8-1.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 7490e2e01330b492b2bcf7826f04739d
SHA-256: d060461fb7b8f73dd55d65805c23a5e6fecfff34e418c3984491788f622784ea
Size: 47.81 kB - podman-1.6.4-26.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 2ea993db037a2c493683200dee488a9a
SHA-256: fb07ea2ef6e8ad48df424dc868bfef496792152c8b34fb510d8d2dc82cf62eee
Size: 10.15 MB - podman-debugsource-1.6.4-26.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 48b2ac4a9eeebbfbda51f7991ff9b543
SHA-256: fb75c87b5330327d22bdda1ec8baba5a65b69449663824848bfc03c8290316b9
Size: 3.31 MB - podman-docker-1.6.4-26.module+el8+1278+ccdd7776.noarch.rpm
MD5: 7e912c2ebc96cf3343d547725a45c817
SHA-256: 5af08eb9280e2188568d5a012e59161cfac1582b177327e0a0a32e82ac67f7a9
Size: 36.47 kB - podman-remote-1.6.4-26.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 40ac3828f4edb4c45479428e24ac8ad2
SHA-256: 5dbd0d80cce37f52bd3ca79f83a4276347028eb2bb901abf554cbdec3ce8e6a3
Size: 9.34 MB - podman-tests-1.6.4-26.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 68ea354df8875ebd5f48adc4fbde2c91
SHA-256: 7187df758c5188ec04a0c897222a749d5231ae0bbf46962804ba653f7cd56a8e
Size: 47.59 kB - python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8+1278+ccdd7776.noarch.rpm
MD5: 8958c96904f41e49e4a02b0caf9af2b0
SHA-256: d619637c4611c71105d8cc13302821a0bed1de3ec63164de31d9726cc1418a31
Size: 42.00 kB - runc-1.0.0-65.rc10.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 02d5ce7c8d0a37ad1357132c87c7da8a
SHA-256: e39d6ad464397304cd6e7b180742bcaced740eee1401b91facd7ad8b8a90824d
Size: 2.36 MB - runc-debugsource-1.0.0-65.rc10.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 17b9738a9f860332e1b7abf78d38b3e7
SHA-256: 4fbd4cdc1f9ae18e532afedc035b0d1247dbe3acb3ca2dc4ab4703d837dd40d6
Size: 480.19 kB - containers-common-0.1.41-4.module+el8+1278+ccdd7776.x86_64.rpm
MD5: e0206fd96843957b571f16633544e520
SHA-256: 89a61d0f9e2f4e91842654fab8707911363b26cdaadb2908c951e3fb73a6750d
Size: 49.30 kB - skopeo-0.1.41-4.module+el8+1278+ccdd7776.x86_64.rpm
MD5: bfde54e517e06fa557f25d4e5fc4eae7
SHA-256: a81d9e082bfbdfb33a31b6bd52314e9f0fe80b6a82a0de5bc3c7dc9609ad9748
Size: 5.73 MB - skopeo-debugsource-0.1.41-4.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 00c4ec3a5c7e3a0dc5ddb8a5b8e0a172
SHA-256: 2eca22c31bf3633ef7c51951f8990606494503873800d0301a9d7d1351337185
Size: 1.75 MB - skopeo-tests-0.1.41-4.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 0a596cb8272b2afc07e6d84c5a84fe35
SHA-256: 5ba6c3d7e3a295843d0d6eb789c6605b5538d4a68811962b95210aa673309198
Size: 32.18 kB - slirp4netns-0.4.2-3.git21fdece.module+el8+1278+ccdd7776.x86_64.rpm
MD5: 74f52e8103fd1cb4d2197faca8c4f2d2
SHA-256: 78b3c6d80fe5192c11d74a553b615b8c1537adce749eddc636e0b7c9142d1196
Size: 86.96 kB - slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8+1278+ccdd7776.x86_64.rpm
MD5: b1003106430769b97b7de0f57d9f6e84
SHA-256: f810717851725f1a855b475249cc206a814ea83f67b9bf4c8b9321faa9d02042
Size: 128.32 kB - toolbox-0.0.7-1.module+el8+1278+ccdd7776.noarch.rpm
MD5: dfdd338207d53e08307f94baceabb733
SHA-256: e8ecc118b107e09d4c0a02773420e830c29a7328a1b720a9bb8f7d2e4e3812ac
Size: 14.37 kB - udica-0.2.1-2.module+el8+1278+ccdd7776.noarch.rpm
MD5: 056d03f9fe27d4d289dcd32b12c07510
SHA-256: 85a033db5fd379d3fe23efec9db49014bba493ac3d8cc4b3cd8d05f415e1afbc
Size: 47.10 kB
日本語