Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

openSUSE Leap 15.4: SUSE-SU-2023:0187-1 Moderate Podman DoS Fix

opensuse
Calendar Grey January 27, 2023
Dist Opensuse Esm H88
Essential SUSE Security Patch for Podman addressing six vulnerabilities while improving performance.
An update that solves 6 vulnerabilities, contains one feature and has one errata is now available.

Description

This update for podman fixes the following issues:

podman was updated to version 4.3.1:

4.3.1:

* Bugfixes

- Fixed a deadlock between the `podman ps` and `podman container inspect`

commands

* Misc

- Updated the containers/image library to v5.23.1

4.3.0:

* Features

- A new command, `podman generate spec`, has been added, which creates a

JSON struct based on a given container that can be used with the Podman

REST API to create containers.

- A new command, `podman update`, has been added,which makes changes to

the resource limits of existing containers. Please note that these

changes do not persist if the container is restarted

- A new command, `podman kube down`, has been added, which removes pods

and containers created by the given Kubernetes YAML (functionality is

identical to `podman kube play --down`, but it now has its own command).

- The `podman kube play` command now supports Kubernetes secrets...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory DoS vulnerability patch important openSUSE Podman

Patch

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap Micro 5.3:

zypper in -t patch openSUSE-Leap-Micro-5.3-2023-187=1

- openSUSE Leap 15.4:

zypper in -t patch openSUSE-SLE-15.4-2023-187=1

- SUSE Linux Enterprise Module for Containers 15-SP4:

zypper in -t patch SUSE-SLE-Module-Containers-15-SP4-2023-187=1

- SUSE Linux Enterprise Micro 5.3:

zypper in -t patch SUSE-SLE-Micro-5.3-2023-187=1

Package List

- openSUSE Leap Micro 5.3 (aarch64 x86_64):

podman-4.3.1-150400.4.11.1

podman-debuginfo-4.3.1-150400.4.11.1

- openSUSE Leap Micro 5.3 (noarch):

podman-cni-config-4.3.1-150400.4.11.1

- openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64):

podman-4.3.1-150400.4.11.1

podman-debuginfo-4.3.1-150400.4.11.1

podman-remote-4.3.1-150400.4.11.1

podman-remote-debuginfo-4.3.1-150400.4.11.1

- openSUSE Leap 15.4 (noarch):

podman-cni-config-4.3.1-150400.4.11.1

podman-docker-4.3.1-150400.4.11.1

- SUSE Linux Enterprise Module for Containers 15-SP4 (aarch64 ppc64le s390x x86_64):

podman-4.3.1-150400.4.11.1

podman-debuginfo-4.3.1-150400.4.11.1

podman-remote-4.3.1-150400.4.11.1

podman-remote-debuginfo-4.3.1-150400.4.11.1

- SUSE Linux Enterprise Module for Containers 15-SP4 (noarch):

podman-cni-config-4.3.1-150400.4.11.1

podman-docker-4.3.1-150400.4.11.1

- SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64):

podman-4.3.1-150400.4.11.1

podman-debuginfo-4.3.1-150400.4.11.1

- SUSE Linux Enterprise Micro 5.3 (noarch):

podman-cni-config...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2021-20199.html

https://www.suse.com/security/cve/CVE-2021-20206.html

https://www.suse.com/security/cve/CVE-2021-4024.html

https://www.suse.com/security/cve/CVE-2021-41190.html

https://www.suse.com/security/cve/CVE-2022-27649.html

https://www.suse.com/security/cve/CVE-2022-2989.html

https://bugzilla.suse.com/1181640

https://bugzilla.suse.com/1181961

https://bugzilla.suse.com/1193166

https://bugzilla.suse.com/1193273

https://bugzilla.suse.com/1197672

https://bugzilla.suse.com/1199790

https://bugzilla.suse.com/1202809

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2023:0187-1
Rating: important
Affected Products: SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Module for Containers 15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 openSUSE Leap Micro 5.3 le.

Topics%20covered

Topics Covered

security advisory DoS vulnerability patch important openSUSE Podman

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here