Fedora 31 runc SECURITY Advisory FEDORA-2019-bd4843561c Critical DoS Threat
fedora
October 7, 2019
Resolves: #1757214, #1757290 - CVE-2019-16884 ---- add patch for cgroupsv2
Summary
The runc command can be used to start containers which are packaged
in accordance with the Open Container Initiative's specifications,
and to manage containers running under runc.
Resolves: #1757214, #1757290 - CVE-2019-16884 ---- add patch for cgroupsv2
[ 1 ] Bug #1757214 - CVE-2019-16884 runc: AppArmor can be bypassed by a malicious image that specifies a volume at /proc
https://bugzilla.redhat.com/show_bug.cgi?id=1757214
su -c 'dnf upgrade --advisory FEDORA-2019-bd4843561c' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Change Log
References
Update Instructions
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Product: Fedora 31
Version: 1.0.0
Release: 101.rc9.gitc1485a1.fc31
Summary: CLI for running Open Containers
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!