container-tools:rhel8 security update

エラータID: AXSA:2024-8911:01

リリース日: 
2024/10/17 Thursday - 19:13
題名: 
container-tools:rhel8 security update
影響のあるチャネル: 
Asianux Server 8 for x86_64
Severity: 
High
Description: 

以下項目について対処しました。

[Security Fix]
- Go の net/http パッケージの ParseMultipartForm() 関数には、
すべてのフォームの解析時に適用するメモリサイズの制限値
がそれぞれのフォームの解析処理時には適用されない問題が
あるため、リモートの攻撃者により、非常に長い行を含むよう
に細工された入力を介して、サービス拒否攻撃 (メモリ枯渇)
を可能とする脆弱性が存在します。(CVE-2023-45290)

- Go の Parse() 関数には、深くネストされたリテラルを処理
する際にスタック領域を枯渇させてしまう問題があるため、
リモートの攻撃者により、サービス拒否攻撃 (パニックの発生)
を可能とする脆弱性が存在します。(CVE-2024-34155)

- Go の Decoder.Decode() 関数には、深くネストされた構造
を含むメッセージを処理する際、スタック領域を枯渇させて
しまう問題があるため、リモートの攻撃者により、サービス
拒否攻撃 (パニックの発生) を可能とする脆弱性が存在します。
(CVE-2024-34156)

- Go の Parse() 関数には、深くネストされた式を含む
"// +build" ビルド タグ行を処理する際にスタック領域を枯渇
させてしまう問題があるため、リモートの攻撃者により、
サービス拒否攻撃 (パニックの発生) を可能とする脆弱性が
存在します。(CVE-2024-34158)

Modularity name: container-tools
Stream name: rhel8

解決策: 

パッケージをアップデートしてください。

CVE: 
CVE-2023-45290
When parsing a multipart form (either explicitly with Request.ParseMultipartForm or implicitly with Request.FormValue, Request.PostFormValue, or Request.FormFile), limits on the total size of the parsed form were not applied to the memory consumed while reading a single form line. This permits a maliciously crafted input containing very long lines to cause allocation of arbitrarily large amounts of memory, potentially leading to memory exhaustion. With fix, the ParseMultipartForm function now correctly limits the maximum size of form lines.
CVE-2024-34155
Calling any of the Parse functions on Go source code which contains deeply nested literals can cause a panic due to stack exhaustion.
CVE-2024-34156
Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
CVE-2024-34158
Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion.
追加情報: 

N/A

ダウンロード: 

SRPMS
  1. aardvark-dns-1.10.1-2.module+el8+1814+2fad233f.src.rpm
    MD5: cf029c0824f7d962a87afe7b2777f436
    SHA-256: e10cf7be0d217cead1757b4fa87ff35ff821c3da63075df3a95eca2482452f57
    Size: 6.14 MB
  2. buildah-1.33.8-4.module+el8+1814+2fad233f.src.rpm
    MD5: 9e2581fe28f32df8c962757905e04acc
    SHA-256: 0acd744977d5cf93e1891590e18e6fa86af563f1fff243778c2c38bfa05625d3
    Size: 17.48 MB
  3. cockpit-podman-84.1-1.module+el8+1814+2fad233f.src.rpm
    MD5: 7fc4c639be712e355cf56592b6f8a522
    SHA-256: 263ac67347e1fce4cb856ed239d0c68ea1b71723a07204459bd99a06a6f025f2
    Size: 1.27 MB
  4. conmon-2.1.10-1.module+el8+1814+2fad233f.src.rpm
    MD5: eba104bb67c7103f04cd49a6f819be45
    SHA-256: 4959c96f2d881e34aefa61a8a216bda396f7e9a3f789cc31aa0f66a3a1ed113a
    Size: 133.59 kB
  5. containernetworking-plugins-1.4.0-5.module+el8+1814+2fad233f.src.rpm
    MD5: 7abdca7b0a5cf68b32137e252fb9581f
    SHA-256: e33a38095b5c3a8039773e9f1ec8a232d256d2036c84d96b6517ab3f5195f15c
    Size: 3.62 MB
  6. containers-common-1-82.module+el8+1814+2fad233f.src.rpm
    MD5: 40eeb67fcb00a0738b396e09943a161e
    SHA-256: 8c2c2637d4d9a66396602f6f85da42d6444ade5dcd94a01e27cd5d4f3605402e
    Size: 145.63 kB
  7. container-selinux-2.229.0-2.module+el8+1814+2fad233f.src.rpm
    MD5: ac6740e3d6ddfc899ecb7a11581a5945
    SHA-256: 7faef12c7be7a2d071821ccf9fd023cb9594556899e8bd9029df8275da339532
    Size: 65.58 kB
  8. criu-3.18-5.module+el8+1814+2fad233f.src.rpm
    MD5: a67e111927342ad0c0b945003aa0b670
    SHA-256: 63b3871dbdf8cea8b21f4b6daa3d388a7351732e137e9d7fdbe438a8202898f8
    Size: 1.32 MB
  9. crun-1.14.3-2.module+el8+1814+2fad233f.src.rpm
    MD5: d80518612ca420fa5cc1d19f50a70cb6
    SHA-256: c22c4ea9ab28600b94a85ce307afc4f936163b87a5f53bf18400081a42ec30bb
    Size: 1.68 MB
  10. fuse-overlayfs-1.13-1.module+el8+1814+2fad233f.src.rpm
    MD5: 1659ab953b1fbab6bcb8d7e3862a3815
    SHA-256: eff8bafa6cc428ce17af85c13895ede092b363d6b1904a6a7c5980484de6a774
    Size: 112.28 kB
  11. libslirp-4.4.0-2.module+el8+1814+2fad233f.src.rpm
    MD5: 79821c2367a2822aa97bb1d6c3889ea4
    SHA-256: 74dccd71e0fb741fa1aebc0e5a89f6dc1d64a254b153db5f1d07f4e3e3f5e18f
    Size: 114.98 kB
  12. netavark-1.10.3-1.module+el8+1814+2fad233f.src.rpm
    MD5: 55b5b8005eaaa1f2f2ac5b3ea8cef460
    SHA-256: 25746f3bfcd621049757b472d142472ddb4185eb82c2adc7de28f43853f871ee
    Size: 15.51 MB
  13. oci-seccomp-bpf-hook-1.2.10-1.module+el8+1814+2fad233f.src.rpm
    MD5: fc88a0212326c9da4b84e912d15d4906
    SHA-256: 1d0bfe4348ed9c92cfa3d6d0720b60dfbfa22547c2f25c981f9e1624ddae737c
    Size: 1.43 MB
  14. podman-4.9.4-13.module+el8+1814+2fad233f.src.rpm
    MD5: 08e8324b92d49460fad6edc5d4668305
    SHA-256: ba5202c800b01c7cb2c37bc6fe647f267f540ee9d86d0a27229adae1a00a339b
    Size: 32.58 MB
  15. python-podman-4.9.0-2.module+el8+1814+2fad233f.src.rpm
    MD5: f56b515891965e296923bd0dd90c5c84
    SHA-256: 518618c4d16b0dc43ffe090e0703dde4ab762515002fce3d82262ab3921a0386
    Size: 188.06 kB
  16. runc-1.1.12-5.module+el8+1814+2fad233f.src.rpm
    MD5: 36e78bdfd3782bc752f0f62e2cccad9a
    SHA-256: 0e70af892e397e5a85ba71c2c2125808d08e3c1ed3a5320069a17bbe84a4af54
    Size: 2.38 MB
  17. skopeo-1.14.5-3.module+el8+1814+2fad233f.src.rpm
    MD5: 766972ec65a844308c53ea85e4f8eebb
    SHA-256: cd81668e38fbdeb9ea97ac4e8291b990824621ae56152e63e9765cebc90c7c8f
    Size: 10.00 MB
  18. slirp4netns-1.2.3-1.module+el8+1814+2fad233f.src.rpm
    MD5: 54074f52584ef9fc7e1c5394bc8f6838
    SHA-256: 515687b1d1613887891da6c8bc077ce5a3b2c2d4a9cfbf7d21a1f3fd2691c71c
    Size: 76.05 kB
  19. toolbox-0.0.99.5-2.module+el8+1814+2fad233f.src.rpm
    MD5: 4e8d4232054becc32c265ffcf774dc28
    SHA-256: 8d33989f6908f009f023d56af77c5285899fd348314c1d8f2dbadfad67138d3f
    Size: 1.10 MB
  20. udica-0.2.6-21.module+el8+1814+2fad233f.src.rpm
    MD5: cda0717e903652a0ccde686cc661ebe4
    SHA-256: 60054c4c5fc5841e67e2a207ac917671636676ce233a76bcf55e9baa769cb8f7
    Size: 134.32 kB

Asianux Server 8 for x86_64
  1. aardvark-dns-1.10.1-2.module+el8+1814+2fad233f.x86_64.rpm
    MD5: b7798198e8523d671dcdbe10ece07d18
    SHA-256: 1f51688ae3c2a712098d4918fb773dac5adaa818e1f3747beaf0d69cd0ff58fe
    Size: 974.28 kB
  2. buildah-1.33.8-4.module+el8+1814+2fad233f.x86_64.rpm
    MD5: ae59b4f7c272d136470a721d6ef96e2b
    SHA-256: 9680f938c86ae611a9a1ecfa5b5a0ad9d4b492903018e0864e5b8fb02047fce9
    Size: 9.66 MB
  3. buildah-debugsource-1.33.8-4.module+el8+1814+2fad233f.x86_64.rpm
    MD5: b604284a52aa25ce4e67a410710439bf
    SHA-256: de2b1f3f3167026816fe7be0c6d2f7841b46fe83d8669f57f956266b3255eb64
    Size: 6.12 MB
  4. buildah-tests-1.33.8-4.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 90a55ad18f2879660e7855d0593b61df
    SHA-256: 7eccea82fc693c027cf0a84d2453c1d78c33e717b4e3b01b9627866de2bb5324
    Size: 30.61 MB
  5. cockpit-podman-84.1-1.module+el8+1814+2fad233f.noarch.rpm
    MD5: d61d752ee7a3e51f86279a67c783b02b
    SHA-256: 969878df3710dd55cdf38fd51fccd46fe4b77bf8f4ba71c399ead0e6abc43bfc
    Size: 682.92 kB
  6. conmon-2.1.10-1.module+el8+1814+2fad233f.x86_64.rpm
    MD5: f10027291468b347ff1cbd0182268edd
    SHA-256: 22008549bcff62c6e6b326fc520ffcd2ca88636183676ec8b3dec249a64f7c86
    Size: 56.82 kB
  7. conmon-debugsource-2.1.10-1.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 11bb3b706114be2ca8a0aeb1b423fda2
    SHA-256: aa190eacff782bd82b1cd50b28a0274da70999a80a08e2e290a1407c60079f57
    Size: 50.46 kB
  8. containernetworking-plugins-1.4.0-5.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 86e99266ff0bd6af6a5404835bfb0f0b
    SHA-256: 11178edd02364b9f7bb22e89fa5bab057d501f97e16c04c258ce6923e2e44cae
    Size: 22.03 MB
  9. containernetworking-plugins-debugsource-1.4.0-5.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 81fb0c948bc8507fc7685ee767a76dbb
    SHA-256: f7893a216d75f8be78acd19362488f31f6a96eeba5f633156928adc27c4d7e02
    Size: 429.96 kB
  10. containers-common-1-82.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 58d1830f3282f84d9751b2b9299dd80b
    SHA-256: 7877d073d2e835e7e262486ca062f006118afba6a9a5e65ab909ef498038b6e0
    Size: 142.05 kB
  11. container-selinux-2.229.0-2.module+el8+1814+2fad233f.noarch.rpm
    MD5: 42bb3c82ff72c9d4ae601e2c3bb193e8
    SHA-256: 0e7f4b6693503a3d297a47b7be3740c01b1054095d358312f4e9b1b5f6ed7bf5
    Size: 69.43 kB
  12. crit-3.18-5.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 9ee9afa2efaacdf5cbf5fcaf02b21743
    SHA-256: c0f3aecea5f4e752a4569cc0331b75c87f2da613de4464123f999d9c6256f874
    Size: 22.10 kB
  13. criu-3.18-5.module+el8+1814+2fad233f.x86_64.rpm
    MD5: e143b1ad587e3bb309194416e5018feb
    SHA-256: c9b040ff0699d165aaab8f583afc6934c0961ead43d5a22bb7ab920d36052824
    Size: 563.12 kB
  14. criu-debugsource-3.18-5.module+el8+1814+2fad233f.x86_64.rpm
    MD5: edde4bc2de6db81612ae5b445bc82396
    SHA-256: 5c868f048a3114e129b13c3f4b672ed1c33476b2b76133022e67d465866492a4
    Size: 729.80 kB
  15. criu-devel-3.18-5.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 127659c6720911c551e35c8d6a4ff2f7
    SHA-256: 6c431f9b0bb2935c3538fa6c1cf6782950e8e9c921fc1dc4caae38aa669d22c6
    Size: 28.23 kB
  16. criu-libs-3.18-5.module+el8+1814+2fad233f.x86_64.rpm
    MD5: cb6915b7390417573a5455cc5326693c
    SHA-256: e9891a7b700d2606df02d38fdd6362b6c430be7ff649c8c2faec4d9b64cef50f
    Size: 38.15 kB
  17. crun-1.14.3-2.module+el8+1814+2fad233f.x86_64.rpm
    MD5: a1e84614fc23ef8d82b820bfe17fc4cf
    SHA-256: 7a0c33be9d40676d174c78857218401579763cfd2741553843d7f4a755173251
    Size: 256.53 kB
  18. crun-debugsource-1.14.3-2.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 3aeb685f74a40bd9b21a1e776b0bdc73
    SHA-256: e2126e4c365ef032f49a79c54cba4eee1e4095740df7d7a8ee2f982bda930f26
    Size: 204.13 kB
  19. fuse-overlayfs-1.13-1.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 2db49ba84cf2521786d5cd630312c70f
    SHA-256: 5aac8f9701ac543da0a3089c3545e5f848001ad08b6a0ef6537aebbe637e3d32
    Size: 68.72 kB
  20. fuse-overlayfs-debugsource-1.13-1.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 57b213a5be2cab35faabde419a4fc910
    SHA-256: b52432edb9c6d3ec95afd9824d4162a9f234ff3ca5660eae84001fac30b6a15c
    Size: 55.61 kB
  21. libslirp-4.4.0-2.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 9f8c31f285a85b3c3ef935d41e3d8306
    SHA-256: 91ce96f7e82046e2023f50dfc8a9650b3919360ffcf911e8cde53b363f84403d
    Size: 69.27 kB
  22. libslirp-debugsource-4.4.0-2.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 929cfd4105558cc97aa2e1ff106f4111
    SHA-256: c61937c3b91e13ad96784374f33dd755e4243c74baac9846529b51f4e27772a2
    Size: 114.55 kB
  23. libslirp-devel-4.4.0-2.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 4d91fafed07ebf8b450c24e2ba0117b9
    SHA-256: e06354d2a041316ca35704c17859c4871f2a794cff0e6fa66f7fc019a1680337
    Size: 11.41 kB
  24. netavark-1.10.3-1.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 078baa619e95ad2fbf77442480d00fbd
    SHA-256: 56d8a2c90682826e4215937a15ac3c7891b14f83547e8800097934e46b77dba8
    Size: 4.11 MB
  25. oci-seccomp-bpf-hook-1.2.10-1.module+el8+1814+2fad233f.x86_64.rpm
    MD5: cfb27f2cc0d1788308cb09c16319172a
    SHA-256: f0ecfbbace6a53bd643f49b8323d949d20f4ec79e982e804e5027df01fd05dcb
    Size: 1.13 MB
  26. oci-seccomp-bpf-hook-debugsource-1.2.10-1.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 72d5b6e6d1ed1562cf4cf29e3016875b
    SHA-256: 1c6810f932a97561d32466575b5c1145d748cfa9afc198b77346eec889688e1e
    Size: 247.94 kB
  27. podman-4.9.4-13.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 0118c2e88debbb1ebbd133186a250124
    SHA-256: 1788453652ca3a0b68f2748edffb03f7dab0b2fb2c6cf289b64b9c620576991d
    Size: 16.07 MB
  28. podman-catatonit-4.9.4-13.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 77bdea3af3b06de9772384cc0d8ccb69
    SHA-256: f4de5fa034e49befc012309cd713e2d4885ff67f3a5d7dc56d3ea258dbe4445c
    Size: 373.16 kB
  29. podman-debugsource-4.9.4-13.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 94e2a2f528fbd42a77d17c75275f5727
    SHA-256: 27922470897c6e300ba77c189b154be09dd9b81fe3876636ddd21650d16931ec
    Size: 9.33 MB
  30. podman-docker-4.9.4-13.module+el8+1814+2fad233f.noarch.rpm
    MD5: f2fd35ba2ededb5b6ab1f29e537b5459
    SHA-256: 509c11bacb6f799a353dcbd960f99e077a8fe4f530fc57a338c2c0102b44d435
    Size: 113.95 kB
  31. podman-gvproxy-4.9.4-13.module+el8+1814+2fad233f.x86_64.rpm
    MD5: f2f5199b8b355bdd5182ca3086fb6f45
    SHA-256: 061afe7f8fedec5c87968f9b42e16724e3fb9a54a972dbc23e791bf950f37ec7
    Size: 3.86 MB
  32. podman-plugins-4.9.4-13.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 7bb03569dfa876a15e82760ad86b06af
    SHA-256: e99c939315397936bb2b2c1a31cce19bdc35c98d544d077c147d2a2e5d5f0847
    Size: 1.33 MB
  33. podman-remote-4.9.4-13.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 7019f4b2a7716f8dbe90669379fccbd4
    SHA-256: fca683a949e1f7a7fad2487bd6085f5452de35fa0c83d370de7c00a3e1763db4
    Size: 10.48 MB
  34. podman-tests-4.9.4-13.module+el8+1814+2fad233f.x86_64.rpm
    MD5: c1756d47389fe93d6943935c9f67484c
    SHA-256: ebe10ff07fa00bbfea03d9a38af11ae4c25b71d11f797bf8a2ddda9cde78f88b
    Size: 265.76 kB
  35. python3-criu-3.18-5.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 11e79bc19b228048b44aa2e5b6f5cbb5
    SHA-256: 5d478d2742adc6f286b019ba301dc10769f00ee1df36df8e8e6c92b7a312d43c
    Size: 177.24 kB
  36. python3-podman-4.9.0-2.module+el8+1814+2fad233f.noarch.rpm
    MD5: b3b4dcf2d842288e30b0a9a8aee881c0
    SHA-256: 4fa4bdf0714c7e2cda6281f1c5109fdeaafd5879c436baa655f3b00b79044a53
    Size: 155.29 kB
  37. runc-1.1.12-5.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 2bb49204ef7297d028ac1b7c6cbf8727
    SHA-256: 2cdb2db86b044f005a51b477d5fb2b060a0200cad091fd0ac04fcec28c0df30e
    Size: 3.11 MB
  38. runc-debugsource-1.1.12-5.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 72ff83bd54c1f8cb196718cc3f966625
    SHA-256: 4e19a78e9e2fb808b25ef44fc172cfe56f05d1c468ac5d2328cedd7015fd0bc7
    Size: 893.97 kB
  39. skopeo-1.14.5-3.module+el8+1814+2fad233f.x86_64.rpm
    MD5: ae59e4f01519ae1b355111760168b399
    SHA-256: fabf1cc44324eade056cdd80ded5ecfae2fa4e76ddd0878f30982b4c0260cdc1
    Size: 8.82 MB
  40. skopeo-tests-1.14.5-3.module+el8+1814+2fad233f.x86_64.rpm
    MD5: b05a08c0cfa26260f1c0ddd853a41818
    SHA-256: d34ffa02b2f5c1bb9698623a9cba228143b5fbf7f63ac3f4e8bf012eae574359
    Size: 785.40 kB
  41. slirp4netns-1.2.3-1.module+el8+1814+2fad233f.x86_64.rpm
    MD5: f4e26c9e8a9914e9d861a499ccdc4d0e
    SHA-256: 00fa6a0e992cd63fbd62b2c537f621a0bff72e314655f224868eabd71778220b
    Size: 54.90 kB
  42. slirp4netns-debugsource-1.2.3-1.module+el8+1814+2fad233f.x86_64.rpm
    MD5: cd038270f99dbf7179bb2ba83ad492f4
    SHA-256: 13d704fa6a0e6dbca34b52fd817f1c14d75b7786ab9c264c986e32071f9f5e6e
    Size: 43.73 kB
  43. toolbox-0.0.99.5-2.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 764f89f2483eefa774352e25f67db6a7
    SHA-256: 33f106d597232f809d288dc012518c0667c6067622593c838239e9d2dccfd4e3
    Size: 2.52 MB
  44. toolbox-debugsource-0.0.99.5-2.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 857805fb387bbd2c58ca32473828a817
    SHA-256: 0de4c71471e195b21593b5afe45d360fb6fd2ca67b20931bd95c8119bb3a47d4
    Size: 571.82 kB
  45. toolbox-tests-0.0.99.5-2.module+el8+1814+2fad233f.x86_64.rpm
    MD5: 1747d0779f7fefb741432cfe48a85213
    SHA-256: e6af3e389183bee33ca927193e2ad1c51dc302235239d22746c6609845a92127
    Size: 43.69 kB
  46. udica-0.2.6-21.module+el8+1814+2fad233f.noarch.rpm
    MD5: 796a90f4b4e19f433f4cadfc0d7e5f52
    SHA-256: 5142beace3e0358a298e479ab61f002b35b2ab9e878f4ff7d6a73da7acdd9d89
    Size: 48.26 kB