Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

openSUSE 2023:0326-1 Important Podman Security Advisory

opensuse
Calendar Grey February 9, 2023
Dist Opensuse Esm H88
SUSE's latest Security Patch brings critical enhancements for container management with podman, addressing several vulnerabilities and optimizing overall stability and security.
An update that solves 6 vulnerabilities, contains one feature and has one errata is now available.

Description

This update for podman fixes the following issues:

podman was updated to version 4.3.1:

4.3.1:

* Bugfixes

- Fixed a deadlock between the `podman ps` and `podman container inspect`

commands

* Misc

- Updated the containers/image library to v5.23.1

4.3.0:

* Features

- A new command, `podman generate spec`, has been added, which creates a

JSON struct based on a given container that can be used with the Podman

REST API to create containers.

- A new command, `podman update`, has been added,which makes changes to

the resource limits of existing containers. Please note that these

changes do not persist if the container is restarted

- A new command, `podman kube down`, has been added, which removes pods

and containers created by the given Kubernetes YAML (functionality is

identical to `podman kube play --down`, but it now has its own command).

- The `podman kube play` command now supports Kubernetes secrets...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory software patch vulnerability important system update SUSE podman

Patch

Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Leap Micro 5.2:

zypper in -t patch openSUSE-Leap-Micro-5.2-2023-326=1

- SUSE Linux Enterprise Server for SAP 15-SP3:

zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2023-326=1

- SUSE Linux Enterprise Server 15-SP3-LTSS:

zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2023-326=1

- SUSE Linux Enterprise Micro 5.2:

zypper in -t patch SUSE-SUSE-MicroOS-5.2-2023-326=1

- SUSE Linux Enterprise Micro 5.1:

zypper in -t patch SUSE-SUSE-MicroOS-5.1-2023-326=1

- SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS:

zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2023-326=1

- SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS:

zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-ESPOS-2023-326=1

- SUSE Enterprise Storage 7.1:

zypper in -t patch SUSE-Storage-7.1-2023-326=1

Package List

- openSUSE Leap Micro 5.2 (aarch64 x86_64):

podman-4.3.1-150300.9.15.1

podman-debuginfo-4.3.1-150300.9.15.1

- openSUSE Leap Micro 5.2 (noarch):

podman-cni-config-4.3.1-150300.9.15.1

- SUSE Linux Enterprise Server for SAP 15-SP3 (ppc64le x86_64):

podman-4.3.1-150300.9.15.1

- SUSE Linux Enterprise Server for SAP 15-SP3 (noarch):

podman-cni-config-4.3.1-150300.9.15.1

- SUSE Linux Enterprise Server 15-SP3-LTSS (aarch64 ppc64le s390x x86_64):

podman-4.3.1-150300.9.15.1

- SUSE Linux Enterprise Server 15-SP3-LTSS (noarch):

podman-cni-config-4.3.1-150300.9.15.1

- SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64):

podman-4.3.1-150300.9.15.1

podman-debuginfo-4.3.1-150300.9.15.1

- SUSE Linux Enterprise Micro 5.2 (noarch):

podman-cni-config-4.3.1-150300.9.15.1

- SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64):

podman-4.3.1-150300.9.15.1

- SUSE Linux Enterprise Micro 5.1 (noarch):

podman-cni-config-4.3.1-150300.9.15.1

- SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS (aarch64 x86_64):

podman-4.3....

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2021-20199.html

https://www.suse.com/security/cve/CVE-2021-20206.html

https://www.suse.com/security/cve/CVE-2021-4024.html

https://www.suse.com/security/cve/CVE-2021-41190.html

https://www.suse.com/security/cve/CVE-2022-27649.html

https://www.suse.com/security/cve/CVE-2022-2989.html

https://bugzilla.suse.com/1181640

https://bugzilla.suse.com/1181961

https://bugzilla.suse.com/1193166

https://bugzilla.suse.com/1193273

https://bugzilla.suse.com/1197672

https://bugzilla.suse.com/1199790

https://bugzilla.suse.com/1202809

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2023:0326-1
Rating: important
Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Server 15-SP3-LTSS SUSE Linux Enterprise Server for SAP 15-SP3 openSUSE Leap Micro 5.2 le.

Topics%20covered

Topics Covered

security advisory software patch vulnerability important system update SUSE podman

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here