Fedora 33: 2021-ec00da7faa Critical: Buildah Denial of Service Fix

This package contains common configuration files and documentation for container

tools ecosystem, such as Podman, Buildah and Skopeo.

It is required because the most of configuration files and docs come from projects

which are vendored into Podman, Buildah, Skopeo, etc. but they are not packaged

separately.

- crun and runc both `Provides: oci-runtime`. - containers-common now has

`Requires: oci-runtime`. - `dnf install oci-runtime` will install crun by

default unless runc is already installed. ---- buildah: Security fix for

CVE-2021-20291 Autobuilt v1.20.1

* Mon Apr 19 2021 Lokesh Mandvekar - 4:1-15

- bump release for kubic

* Mon Apr 19 2021 Lokesh Mandvekar - 4:1-11

- use config from latest upstream releases

- Add oci-runtime and container-selinux dependencies

[ 1 ] Bug #1939485 - CVE-2021-20291 containers/storage: DoS via malicious image

https://bugzilla.redhat.com/show_bug.cgi?id=1939485

su -c 'dnf upgrade --advisory FEDORA-2021-ec00da7faa' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure