container-tools:3.0 security update
エラータID: AXSA:2021-2358:01
リリース日:
2021/08/13 Friday - 07:33
題名:
container-tools:3.0 security update
影響のあるチャネル:
Asianux Server 8 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- バージョン 1.0.0-rc95 以前の runc には、ディレクトリートラバーサルにより
コンテナー外部のファイルにアクセスできる脆弱性があります。
これは、特殊な mount 構成をもつコンテナーを利用した、競合状態下の
シンボリックリンク攻撃によるものです。(CVE-2021-30465)
Modularity name: container-tools
Stream name: 3.0
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2021-30465
runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.
runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.
追加情報:
N/A
ダウンロード:
SRPMS
- buildah-1.19.7-1.module+el8+1279+887cb7b3.src.rpm
MD5: ad942056b251ca108144d2bd9f9f12ab
SHA-256: d38215869202199cb726cfa205e5c29f18629f974341c93a1337aebab839008b
Size: 10.10 MB - cockpit-podman-29-2.module+el8+1279+887cb7b3.src.rpm
MD5: c43057d5b5bde64be2063d453ae02e5a
SHA-256: a0d75a5e4341512f0d40c45616c62cd584ebbeaa3f1711829779d8001501396e
Size: 1.34 MB - conmon-2.0.26-1.module+el8+1279+887cb7b3.src.rpm
MD5: bf8c72db050483819ca05157916f9450
SHA-256: 33643c6c6b933253bdd673d1b24e3ee2c70714e810baa868f65ae0ca67b3a638
Size: 113.25 kB - containernetworking-plugins-0.9.1-1.module+el8+1279+887cb7b3.src.rpm
MD5: e7b6e327d62c282a72f8735c44ba4205
SHA-256: 8cf089b527a7f38e6f42c81360a70cc404e9dba7cc0fe8100bfd694057a493b4
Size: 2.44 MB - container-selinux-2.158.0-1.module+el8+1279+887cb7b3.src.rpm
MD5: aedaa39909bfb273639edaf5d50fc187
SHA-256: 28b7a843f837dcdf00ac7b349aa140b2f05a33c5fc2bab5704e00503f6302f34
Size: 48.01 kB - criu-3.15-1.module+el8+1279+887cb7b3.src.rpm
MD5: b8cf49978bafea63263f0f145c9e6089
SHA-256: c62ce996aa26ccac66b839887d405b55c8bab06f77fbf8f690d55787edaccbaf
Size: 1.15 MB - crun-0.18-2.module+el8+1279+887cb7b3.src.rpm
MD5: f64c5f17add420e6fe17e2d2f32dd8f4
SHA-256: 93c149ed867f3b9bde19c93871d1ca5c040b6f9bc8eaf4cf8b9604a2be986726
Size: 1.34 MB - fuse-overlayfs-1.4.0-2.module+el8+1279+887cb7b3.src.rpm
MD5: 39e7e004481e15029d5e4e068d795272
SHA-256: c31e85421bee9ab1a3e137ce6c99b481f2580c93c994c95adc95f0ae8e08b0ef
Size: 112.61 kB - libslirp-4.3.1-1.module+el8+1279+887cb7b3.src.rpm
MD5: 986154ade072d2165b80ff5afd04d67c
SHA-256: 274dc95158cce9be944ee0d517367cd2764d5bad6acfabbfcad8c948fa5e65d1
Size: 105.83 kB - oci-seccomp-bpf-hook-1.2.0-1.module+el8+1279+887cb7b3.src.rpm
MD5: 07dc044b22d4035f48a93dab67d401dc
SHA-256: aa37ad0b34fbf86de17124c423f01cfd862b44d0516f3bdd156610afcdc46108
Size: 929.38 kB - podman-3.0.1-6.module+el8+1279+887cb7b3.src.rpm
MD5: 24e9aebd8762d31d3e3e6e9cc9fb3a35
SHA-256: 7aa3254867ff0784e053de84f62df14c8c2e8052f9293f3c5f2990fdf29315a3
Size: 11.95 MB - runc-1.0.0-71.rc92.module+el8+1279+887cb7b3.src.rpm
MD5: 1b557f4da4352c9ed8c3aa28b29345fa
SHA-256: 6efedd66da131b4f59203f84406e5fe34f63dfb571af2a95da9ccf3c867d1740
Size: 1.96 MB - skopeo-1.2.2-7.module+el8+1279+887cb7b3.src.rpm
MD5: ea6c6df0477942dc7069e082ad8d7892
SHA-256: 3b974f331ddcea8a2a556d58070f2b1dc500a326689b8aed9b2925510c3c2f73
Size: 4.58 MB - slirp4netns-1.1.8-1.module+el8+1279+887cb7b3.src.rpm
MD5: 0930415414e60a5316af88913d78aa64
SHA-256: baaa61b681f33acfd60e3a2ced8cde5dc176ec84b789ddfd256d815a1ee0e8bd
Size: 67.47 kB - toolbox-0.0.8-1.module+el8+1279+887cb7b3.src.rpm
MD5: 949c0bb2363e8b0ff7fda11e5747cdf0
SHA-256: c073edbcc034cb9d3d2ec4339b1b33d3be26c4dafa50103f745dff4a9ed75325
Size: 19.12 kB - udica-0.2.4-1.module+el8+1279+887cb7b3.src.rpm
MD5: 691edf220200ac224bfd2fefd3e556fd
SHA-256: ca54a70d3d841e24559623bcad059e67463c54dffa0a47911ad2e20aab0fa560
Size: 133.56 kB
Asianux Server 8 for x86_64
- buildah-1.19.7-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 91a8560386038910d52e2c9709788061
SHA-256: 674e73773e3f173f714fc4e98037b36c75e282c3533ce405d187510a3e2c77bd
Size: 7.42 MB - buildah-debugsource-1.19.7-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: b6e746fcb5b40934f07fd8978239fe5d
SHA-256: ab4ce8351e1eea22db62ddce762f88aaff1277e764ab1850fd3fd40e8f2ea2d7
Size: 2.52 MB - buildah-tests-1.19.7-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: c89ad831658c0d6326057b0c96719396
SHA-256: 11d3805e418dd02bd82347577686a24767e347626b32ed4c1e7cb5eed7f51723
Size: 8.79 MB - cockpit-podman-29-2.module+el8+1279+887cb7b3.noarch.rpm
MD5: 3163ff1d3f4d23dff91f6fa6253fe204
SHA-256: b85befaf07096217b7dee5489a766371965683cd7995919c4a46cb860e72edff
Size: 1.07 MB - conmon-2.0.26-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 15aa7513a917da1e98e36e192b219b27
SHA-256: ffd12e5a8bdddf19fa2e36e49d860cabce4298408931193411f0aba4fc99e532
Size: 49.75 kB - conmon-debugsource-2.0.26-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 0d4fd9e748d8237b144ee3d1af16d0c3
SHA-256: 0d0386d067af18fe9c8ab4b447a870e7751c0798c994cb1f80db2ba11309e3e0
Size: 41.43 kB - containernetworking-plugins-0.9.1-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: a198b60de4d3ac3fbb4d3129a5fe7fd5
SHA-256: 622d457e7734ab8fdc9f5d54b7b0986ee18503753ced66763ac02eb83093df7c
Size: 20.23 MB - containernetworking-plugins-debugsource-0.9.1-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: f64ef9395b5b3c7cfcf63a51767a4a33
SHA-256: 14f5974e4b789b890dbf1128e198b0e32c340d2b7a509d9c813b16a82e6ece01
Size: 343.03 kB - container-selinux-2.158.0-1.module+el8+1279+887cb7b3.noarch.rpm
MD5: 1df825854da236416bf74b306dea1944
SHA-256: 9470b8344e583272113e48af7ec567d85d9e809035b846986752ea9179b3d848
Size: 49.90 kB - crit-3.15-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 2f97a4061ef5557fc61969f0e4a19775
SHA-256: fef3e905159c5da400a7228f5a13c62b46b1382eb8173e63ce3af50de7f06397
Size: 18.36 kB - criu-3.15-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 99671ec9a47f25ba76f6715a96bd6db4
SHA-256: a7cc6e16692a75f5c30a5096ef579544d516fd28de41e39cbcb03e02e25c8057
Size: 510.07 kB - criu-debugsource-3.15-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 68eb2f3fa3ace298f23e2176ddfb2657
SHA-256: 1311051a645a48443e78919ca6876dd66398fb6be6350bafc3539ee6f1918e88
Size: 663.58 kB - python3-criu-3.15-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 8c847c0e9035428997752d772e62c8e3
SHA-256: 19b0fadf0009af849ec13265752f25f78fade2757820bcaf2f4d4d7fc8232340
Size: 168.55 kB - crun-0.18-2.module+el8+1279+887cb7b3.x86_64.rpm
MD5: ecb35cc63d0d172815ee69ae17862c38
SHA-256: 6432508736757d2095fe1ee52e56e9918ee2080e367741ced7bb86e87d4b80e6
Size: 183.65 kB - crun-debugsource-0.18-2.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 325293575cb9e23632ef70d959865ea2
SHA-256: e8be79b1f76e4a6696f81cf547e0eab86a017b7a88626746f44ae474e5621bb5
Size: 134.20 kB - fuse-overlayfs-1.4.0-2.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 65b9ee0b18849d43105b15fdb10fee6b
SHA-256: 22d02a2b9a11019b38147e7430f5bc5c39fe0b994dc5c96e2831f63fd9ffad6a
Size: 70.74 kB - fuse-overlayfs-debugsource-1.4.0-2.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 388b777109fb8cc9631139a87d032ec5
SHA-256: 07de107a9eb26a5c0b843b77fcc0ccc38b2e172297002f664409f6a87da55c99
Size: 52.35 kB - libslirp-4.3.1-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 5a945690dd44d81671fdd62cc5a973f7
SHA-256: 7e5596b227068becd4b2422d3a972a0ed018056ec742756c42b30dfb782fd8e5
Size: 67.84 kB - libslirp-debugsource-4.3.1-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: c93fe937f3a400f0966bfaf71fefbe24
SHA-256: ce3e3c23cdc69418613e1f5eaaefe803952b173120b4af7bde26249c411b8336
Size: 112.95 kB - libslirp-devel-4.3.1-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 071d6be2e0e42239064bdc2ee180cf25
SHA-256: 7da1a2dba2ef10662c9f82b19df39d812c2dd3b4872f40701b5b500c68de8ff6
Size: 11.15 kB - oci-seccomp-bpf-hook-1.2.0-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: d5c5c0756f1193fdebb4ca8d2b9038e6
SHA-256: 35ce6502a0bf26965bf9070ccb7cef56abc895884481eb3a668fc5c3705ae77d
Size: 1.11 MB - oci-seccomp-bpf-hook-debugsource-1.2.0-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: a097824c447276df9e64b60919a49fcf
SHA-256: 81739587f6914e5fdc89c028fbd3aad9ad3880e9c64ffc3d0d687abe2358e41b
Size: 143.56 kB - podman-3.0.1-6.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 24ddd9de36dec486b2b73be56806d6f5
SHA-256: bb63ea8299d1578c4630b3263433c1648d5d84cf12c449cec198decc306c32fe
Size: 11.85 MB - podman-catatonit-3.0.1-6.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 3cd69001b5fb6914507fc610e0df821b
SHA-256: 2b0bb794216caaf09be78783623418de70ebd0723b36cba74be3f824e2eb2b22
Size: 318.80 kB - podman-debugsource-3.0.1-6.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 5d2463bb67153f8547cbb9289a221fa8
SHA-256: 17764eadb954405ed3d7eb8348c427199683172a6c93f4baa9af607c4998a369
Size: 4.34 MB - podman-docker-3.0.1-6.module+el8+1279+887cb7b3.noarch.rpm
MD5: 0898d237655af860e9cad495a3f79109
SHA-256: c2d4326f218b4acb18d0ee48c3618900fd6adcf9c7e5671fa4ba6974855bf646
Size: 54.31 kB - podman-plugins-3.0.1-6.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 30406df215a72bcee62aeea213c390b3
SHA-256: efc71c60dd778bd4219ffad65d713d8b58d6992f1942019ab9d7e46b45be2b39
Size: 1.25 MB - podman-remote-3.0.1-6.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 43f08d280a69f439efac00ac1c070af3
SHA-256: 400840134ec410b31193eee9f59f3ac95cede41714843d8d052af6d7f42f5f8a
Size: 9.13 MB - podman-tests-3.0.1-6.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 70c76468c75d7c6d820a9dff36a6882c
SHA-256: 61f52acc2094e4d85c1a00d447fd056db5a0259053acd8784fdaf254c73bb3ec
Size: 103.27 kB - runc-1.0.0-71.rc92.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 953c270ca95caeb69ba72d4693936208
SHA-256: cccf1faccf49fa8bdcba80707629e6882faa612e06a13a1b00bc97091ac03acd
Size: 3.06 MB - runc-debugsource-1.0.0-71.rc92.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 60affea0570ba4601656c4fefdcfb801
SHA-256: 5b929859b886897e70fba3e76ed6f9dcb2987164bdffdb0e727eb27ce5759405
Size: 773.14 kB - containers-common-1.2.2-7.module+el8+1279+887cb7b3.x86_64.rpm
MD5: cd05b46f324075cecbf462a2d5dc3e82
SHA-256: 42c36a097685b25e608e9776e8e3950b3a4bc7a5fe205518aaf41f29ff92422e
Size: 96.27 kB - skopeo-1.2.2-7.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 11ebab7445336197d6d57c4722d5cb7c
SHA-256: ff677db2e14b3bf73130c661d726dc696f893f0a92ed4b7fc5abf8019d6c2ec1
Size: 6.30 MB - skopeo-debugsource-1.2.2-7.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 9ca644242977f6d5714a73b127dd59dd
SHA-256: 6d654ca074bdcf5e36dbf81cf7c63aff4f9e63fb0ab0af6b1c507df80dd6f939
Size: 2.01 MB - skopeo-tests-1.2.2-7.module+el8+1279+887cb7b3.x86_64.rpm
MD5: ef32f132123651239d4d4b298257a32a
SHA-256: c3a93523cc7206f8b7a8627c8a4cfc089d29a41a2688d229fb01b5e0204e1dca
Size: 38.72 kB - slirp4netns-1.1.8-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 27483af9eba77ee8d1dfba3d8b89f3ac
SHA-256: 07c4f4d7d0d0d8b61af5ae2bd80a51a7d4d41cfa6c1e81d652adf8723c138e62
Size: 50.01 kB - slirp4netns-debugsource-1.1.8-1.module+el8+1279+887cb7b3.x86_64.rpm
MD5: 177aa1c9334f9131bd77f4c1d760b2ca
SHA-256: 7e0572c14c534a7e9007799c0ad64c7aaca8c6d87169b604a6757a601c102ffb
Size: 38.61 kB - toolbox-0.0.8-1.module+el8+1279+887cb7b3.noarch.rpm
MD5: a90c2000577e94e468aedeaf5fc55db2
SHA-256: 665e428be4f36a3276388ddd61dbd6018ac1c21848588d78839864b24e792276
Size: 14.60 kB - udica-0.2.4-1.module+el8+1279+887cb7b3.noarch.rpm
MD5: 9e879e3a66ae975d131481e12584450e
SHA-256: e4bf90f99edef374e2ea38d59ad01da2192a951f401cb697bea15cedfe614281
Size: 49.38 kB