Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 30: Runc Security Update FEDORA-2019-96946c39dd Critical: DoS

fedora
Calendar Grey October 15, 2019
Dist Fedora Esm H88
Urgent runc security bulletin for Fedora 30 highlights a severe vulnerability and outlines remediation steps for both users and system administrators.
Resolves: #1757214, #1757290 - CVE-2019-16884 ---- add patch for cgroupsv2

Summary

The runc command can be used to start containers which are packaged

in accordance with the Open Container Initiative's specifications,

and to manage containers running under runc.

Resolves: #1757214, #1757290 - CVE-2019-16884 ---- add patch for cgroupsv2

* Mon Oct 7 2019 Lokesh Mandvekar - 2:1.0.0-95.rc9.gitc1485a1

- Resolves: #1757214, #1757290 - CVE-2019-16884

- bump to v1.0.0-rc9

* Thu Oct 3 2019 Lokesh Mandvekar - 2:1.0.0-94.dev.gitb9b6cc6

- add patch for cgroupsv2

- From: Giuseppe Scrivano

* Wed May 15 2019 Daniel Walsh - 2:1.0.0-93.dev.gitb9b6cc6e

- Fix issue with runc interacting with /dev/stderr

* Wed Apr 24 2019 Daniel Walsh - 2:1.0.0-92.dev.gitc1b8c57a

- Fix issue with runc failing on SELinux disabled machines

* Fri Apr 19 2019 Daniel Walsh - 2:1.0.0-91.dev.gitda202113

- Revert Build with nokmem

* Wed Apr 17 2019 Daniel Walsh - 2:1.0.0-90.dev.gitda202113

- Build with nokmem

* Thu Apr 4 2019 Lokesh Mandvekar (Bot) - 2:1.0.0-89.dev.git029124d

- autobuilt 029124d

* Wed Apr 3 2019 Lokesh Mandvekar (Bot) - 2:1.0.0-88.dev.git6a3f474

- autobuilt 6a3f474

* Thu Mar 28 2019 Daniel Walsh - 2:1.0.0-87.dev.gitda202113

- release candidate 7

* Sat Mar 23 2019 Lokesh Mandvekar (Bot) - 2:1.0.0-86.dev.git11fc498

- autobuilt 11fc498

[ 1 ] Bug #1757214 - CVE-2019-16884 runc: AppArmor can be bypassed by a malicious image that specifies a volume at /proc

https://bugzilla.redhat.com/show_bug.cgi?id=1757214

su -c 'dnf upgrade --advisory FEDORA-2019-96946c39dd' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Topics%20covered

Topics Covered

security advisory security update Fedora DoS patch runc cgroups

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 30
Version: 1.0.0
Release: 95.rc9.gitc1485a1.fc30
URL: https://github.com/opencontainers/runc
Summary: CLI for running Open Containers

Topics%20covered

Topics Covered

security advisory security update Fedora DoS patch runc cgroups

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here