Alerts This Week
Warning Icon 1 681
Alerts This Week
Warning Icon 1 681

Fedora 37: 2022-7e327a20be Critical: Containerd Memory Exhaustion Issue

fedora
Calendar Grey December 26, 2022
Dist Fedora Esm H88
Fedora 37 brings major advancements in containerd, boosting reliability and fixing key security issues, ensuring a secure and efficient container environment for all
Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability

Summary

Containerd is an industry-standard container runtime with an emphasis on

simplicity, robustness and portability. It is available as a daemon for Linux

and Windows, which can manage the complete container lifecycle of its host

system: image transfer and storage, container execution and supervision,

low-level storage and network attachments, etc.

## golang-github-containerd-cgroups Fix bodhi bug of making epoch version

obsolete ## containerd Update to 1.6.14 (rhbz#2154183)

* Tue Dec 20 2022 Maxwell G 1.6.14-2

- Fixes: rhbz##2154183

* Mon Dec 19 2022 Dalton Hubble 1.6.14-1

- Update to 1.6.14

[ 1 ] Bug #2134573 - CVE-2022-29153 moby-engine: consul: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2134573

[ 2 ] Bug #2151891 - CVE-2022-23471 containerd: host memory exhaustion [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2151891

[ 3 ] Bug #2152870 - F37FailsToInstall: containerd-devel

https://bugzilla.redhat.com/show_bug.cgi?id=2152870

[ 4 ] Bug #2154183 - containerd-1.6.14 is available

https://bugzilla.redhat.com/show_bug.cgi?id=2154183

su -c 'dnf upgrade --advisory FEDORA-2022-7e327a20be' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam, report it:

Topics%20covered

Topics Covered

security advisory critical issue software update Fedora memory exhaustion containerd

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 37
Version: 1.6.14
Release: 2.fc37
URL: https://github.com/containerd/containerd
Summary: Open and reliable container runtime

Topics%20covered

Topics Covered

security advisory critical issue software update Fedora memory exhaustion containerd

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here