-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

=====================================================================
                   Red Hat Security Advisory

Synopsis:          Moderate: container-tools:rhel8 security, bug fix, and enhancement update
Advisory ID:       RHSA-2021:1796-01
Product:           Red Hat Enterprise Linux
Advisory URL:      https://access.redhat.com/errata/RHSA-2021:1796
Issue date:        2021-05-18
CVE Names:         CVE-2020-29652 CVE-2021-20199 
=====================================================================

1. Summary:

An update for the container-tools:rhel8 module is now available for Red Hat
Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available for each vulnerability from
the CVE link(s) in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64

3. Description:

The container-tools module contains tools for working with containers,
notably podman, buildah, skopeo, and runc.

Security Fix(es):

* golang: crypto/ssh: crafted authentication request can lead to nil
pointer dereference (CVE-2020-29652)

* podman: Remote traffic to rootless containers is seen as orginating from
localhost (CVE-2021-20199)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat
Enterprise Linux 8.4 Release Notes linked from the References section.

4. Solution:

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

5. Bugs fixed (https://bugzilla.redhat.com/):

1707078 - Image signature only has one docker registry reference, would like the ability to have two hostnames sign them.
1724946 - Can not verify signed image signature in OCP 4
1726442 - SIGTERM from systemd to containers|conmon on shutdown causes unexpected results
1763007 - --log-opt for podman run does not work as expected
1770037 - (podman sign) does not handle multi-arch images
1798278 - subscription-manager recommends drags in too much into RHCOS
1811773 - [RFE] cockpit-podman ability to set selinux contexts for volumes
1838233 - address coverity warnings
1841485 - podman exec is fragile in the presence of signals
1844199 - [RFE] Add remapIdentity suggestion to simplify policy configuration
1853455 - podman ignores infra_command option from containers.conf
1860176 - OCI Runtime kata-runtime is in use by a container, but is not available
1867892 - running containerized buildah leads to error
1881894 - podman-remote: dial unix ///run/podman/podman.sock: connect: no such file or directory
1897282 - podman-wait requiring units for interval when it is documented as optional
1897594 - update description and summary for container-tools module for 8.3.0
1902979 - podman run fails to update  /etc/hosts when --uidmap is provided
1903813 - [RFE] Ship preconfigured /etc/containers/registries.d/ files with containers-common
1904549 - POST to /networks/create with docker compatible API results in panic
1908883 - CVE-2020-29652 golang: crypto/ssh: crafted authentication request can lead to nil pointer dereference
1915383 - Podman "--format" does not support "join"
1918554 - error bind mounting /dev from host into mount namespace: mkdir /var/tmp/buildah396339746/mnt/rootfs/dev: operation not permitted
1919050 - CVE-2021-20199 podman: Remote traffic to rootless containers is seen as orginating from localhost
1921128 - [gss][podman]Getting the error while starting container "Error: readlink /var/lib/containers/storage/overlay/l/XXX no such file or directory"
1923986 - podman: Installation instructions for rootless podman do not work
1924146 - RFE Bind mounting host volume using Podman REST API
1931545 - podman 3.0.1 ships with a v2 go module
1931785 - shortname for ubi8-minimal leads to "Repo not found" error
1932083 - Podman will pull image for rootless CNI
1935376 - Regression: Overlay mounts is broken on existing directories.
1935922 - Unable to run multi-stage builds with rootless buildah container
1936927 - regressions cp command in Podman v3.0
1937487 - Podman socket failing to connect with long uid
1938234 - Variety of errors during rootless container image creation

6. Package List:

Red Hat Enterprise Linux AppStream (v. 8):

Source:
buildah-1.19.7-1.module+el8.4.0+10607+f4da7515.src.rpm
cockpit-podman-29-2.module+el8.4.0+10607+f4da7515.src.rpm
conmon-2.0.26-1.module+el8.4.0+10607+f4da7515.src.rpm
container-selinux-2.158.0-1.module+el8.4.0+10607+f4da7515.src.rpm
containernetworking-plugins-0.9.1-1.module+el8.4.0+10607+f4da7515.src.rpm
criu-3.15-1.module+el8.4.0+10607+f4da7515.src.rpm
crun-0.18-1.module+el8.4.0+10607+f4da7515.src.rpm
fuse-overlayfs-1.4.0-2.module+el8.4.0+10607+f4da7515.src.rpm
libslirp-4.3.1-1.module+el8.4.0+10607+f4da7515.src.rpm
oci-seccomp-bpf-hook-1.2.0-2.module+el8.4.0+10607+f4da7515.src.rpm
podman-3.0.1-6.module+el8.4.0+10607+f4da7515.src.rpm
runc-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.src.rpm
skopeo-1.2.2-8.module+el8.4.0+10607+f4da7515.src.rpm
slirp4netns-1.1.8-1.module+el8.4.0+10607+f4da7515.src.rpm
toolbox-0.0.8-1.module+el8.4.0+10607+f4da7515.src.rpm
udica-0.2.4-1.module+el8.4.0+10607+f4da7515.src.rpm

aarch64:
buildah-1.19.7-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
buildah-debuginfo-1.19.7-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
buildah-debugsource-1.19.7-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
buildah-tests-1.19.7-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
buildah-tests-debuginfo-1.19.7-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
conmon-2.0.26-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
conmon-debuginfo-2.0.26-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
conmon-debugsource-2.0.26-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
containernetworking-plugins-0.9.1-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
containernetworking-plugins-debuginfo-0.9.1-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
containernetworking-plugins-debugsource-0.9.1-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
containers-common-1.2.2-8.module+el8.4.0+10607+f4da7515.aarch64.rpm
crit-3.15-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
criu-3.15-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
criu-debuginfo-3.15-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
criu-debugsource-3.15-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
crun-0.18-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
crun-debuginfo-0.18-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
crun-debugsource-0.18-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
fuse-overlayfs-1.4.0-2.module+el8.4.0+10607+f4da7515.aarch64.rpm
fuse-overlayfs-debuginfo-1.4.0-2.module+el8.4.0+10607+f4da7515.aarch64.rpm
fuse-overlayfs-debugsource-1.4.0-2.module+el8.4.0+10607+f4da7515.aarch64.rpm
libslirp-4.3.1-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
libslirp-debuginfo-4.3.1-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
libslirp-debugsource-4.3.1-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
libslirp-devel-4.3.1-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
oci-seccomp-bpf-hook-1.2.0-2.module+el8.4.0+10607+f4da7515.aarch64.rpm
oci-seccomp-bpf-hook-debuginfo-1.2.0-2.module+el8.4.0+10607+f4da7515.aarch64.rpm
oci-seccomp-bpf-hook-debugsource-1.2.0-2.module+el8.4.0+10607+f4da7515.aarch64.rpm
podman-3.0.1-6.module+el8.4.0+10607+f4da7515.aarch64.rpm
podman-catatonit-3.0.1-6.module+el8.4.0+10607+f4da7515.aarch64.rpm
podman-catatonit-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.aarch64.rpm
podman-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.aarch64.rpm
podman-debugsource-3.0.1-6.module+el8.4.0+10607+f4da7515.aarch64.rpm
podman-plugins-3.0.1-6.module+el8.4.0+10607+f4da7515.aarch64.rpm
podman-plugins-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.aarch64.rpm
podman-remote-3.0.1-6.module+el8.4.0+10607+f4da7515.aarch64.rpm
podman-remote-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.aarch64.rpm
podman-tests-3.0.1-6.module+el8.4.0+10607+f4da7515.aarch64.rpm
python3-criu-3.15-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
runc-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.aarch64.rpm
runc-debuginfo-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.aarch64.rpm
runc-debugsource-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.aarch64.rpm
skopeo-1.2.2-8.module+el8.4.0+10607+f4da7515.aarch64.rpm
skopeo-debuginfo-1.2.2-8.module+el8.4.0+10607+f4da7515.aarch64.rpm
skopeo-debugsource-1.2.2-8.module+el8.4.0+10607+f4da7515.aarch64.rpm
skopeo-tests-1.2.2-8.module+el8.4.0+10607+f4da7515.aarch64.rpm
slirp4netns-1.1.8-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
slirp4netns-debuginfo-1.1.8-1.module+el8.4.0+10607+f4da7515.aarch64.rpm
slirp4netns-debugsource-1.1.8-1.module+el8.4.0+10607+f4da7515.aarch64.rpm

noarch:
cockpit-podman-29-2.module+el8.4.0+10607+f4da7515.noarch.rpm
container-selinux-2.158.0-1.module+el8.4.0+10607+f4da7515.noarch.rpm
podman-docker-3.0.1-6.module+el8.4.0+10607+f4da7515.noarch.rpm
toolbox-0.0.8-1.module+el8.4.0+10607+f4da7515.noarch.rpm
udica-0.2.4-1.module+el8.4.0+10607+f4da7515.noarch.rpm

ppc64le:
buildah-1.19.7-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
buildah-debuginfo-1.19.7-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
buildah-debugsource-1.19.7-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
buildah-tests-1.19.7-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
buildah-tests-debuginfo-1.19.7-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
conmon-2.0.26-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
conmon-debuginfo-2.0.26-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
conmon-debugsource-2.0.26-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
containernetworking-plugins-0.9.1-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
containernetworking-plugins-debuginfo-0.9.1-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
containernetworking-plugins-debugsource-0.9.1-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
containers-common-1.2.2-8.module+el8.4.0+10607+f4da7515.ppc64le.rpm
crit-3.15-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
criu-3.15-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
criu-debuginfo-3.15-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
criu-debugsource-3.15-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
crun-0.18-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
crun-debuginfo-0.18-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
crun-debugsource-0.18-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
fuse-overlayfs-1.4.0-2.module+el8.4.0+10607+f4da7515.ppc64le.rpm
fuse-overlayfs-debuginfo-1.4.0-2.module+el8.4.0+10607+f4da7515.ppc64le.rpm
fuse-overlayfs-debugsource-1.4.0-2.module+el8.4.0+10607+f4da7515.ppc64le.rpm
libslirp-4.3.1-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
libslirp-debuginfo-4.3.1-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
libslirp-debugsource-4.3.1-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
libslirp-devel-4.3.1-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
oci-seccomp-bpf-hook-1.2.0-2.module+el8.4.0+10607+f4da7515.ppc64le.rpm
oci-seccomp-bpf-hook-debuginfo-1.2.0-2.module+el8.4.0+10607+f4da7515.ppc64le.rpm
oci-seccomp-bpf-hook-debugsource-1.2.0-2.module+el8.4.0+10607+f4da7515.ppc64le.rpm
podman-3.0.1-6.module+el8.4.0+10607+f4da7515.ppc64le.rpm
podman-catatonit-3.0.1-6.module+el8.4.0+10607+f4da7515.ppc64le.rpm
podman-catatonit-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.ppc64le.rpm
podman-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.ppc64le.rpm
podman-debugsource-3.0.1-6.module+el8.4.0+10607+f4da7515.ppc64le.rpm
podman-plugins-3.0.1-6.module+el8.4.0+10607+f4da7515.ppc64le.rpm
podman-plugins-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.ppc64le.rpm
podman-remote-3.0.1-6.module+el8.4.0+10607+f4da7515.ppc64le.rpm
podman-remote-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.ppc64le.rpm
podman-tests-3.0.1-6.module+el8.4.0+10607+f4da7515.ppc64le.rpm
python3-criu-3.15-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
runc-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.ppc64le.rpm
runc-debuginfo-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.ppc64le.rpm
runc-debugsource-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.ppc64le.rpm
skopeo-1.2.2-8.module+el8.4.0+10607+f4da7515.ppc64le.rpm
skopeo-debuginfo-1.2.2-8.module+el8.4.0+10607+f4da7515.ppc64le.rpm
skopeo-debugsource-1.2.2-8.module+el8.4.0+10607+f4da7515.ppc64le.rpm
skopeo-tests-1.2.2-8.module+el8.4.0+10607+f4da7515.ppc64le.rpm
slirp4netns-1.1.8-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
slirp4netns-debuginfo-1.1.8-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm
slirp4netns-debugsource-1.1.8-1.module+el8.4.0+10607+f4da7515.ppc64le.rpm

s390x:
buildah-1.19.7-1.module+el8.4.0+10607+f4da7515.s390x.rpm
buildah-debuginfo-1.19.7-1.module+el8.4.0+10607+f4da7515.s390x.rpm
buildah-debugsource-1.19.7-1.module+el8.4.0+10607+f4da7515.s390x.rpm
buildah-tests-1.19.7-1.module+el8.4.0+10607+f4da7515.s390x.rpm
buildah-tests-debuginfo-1.19.7-1.module+el8.4.0+10607+f4da7515.s390x.rpm
conmon-2.0.26-1.module+el8.4.0+10607+f4da7515.s390x.rpm
conmon-debuginfo-2.0.26-1.module+el8.4.0+10607+f4da7515.s390x.rpm
conmon-debugsource-2.0.26-1.module+el8.4.0+10607+f4da7515.s390x.rpm
containernetworking-plugins-0.9.1-1.module+el8.4.0+10607+f4da7515.s390x.rpm
containernetworking-plugins-debuginfo-0.9.1-1.module+el8.4.0+10607+f4da7515.s390x.rpm
containernetworking-plugins-debugsource-0.9.1-1.module+el8.4.0+10607+f4da7515.s390x.rpm
containers-common-1.2.2-8.module+el8.4.0+10607+f4da7515.s390x.rpm
crit-3.15-1.module+el8.4.0+10607+f4da7515.s390x.rpm
criu-3.15-1.module+el8.4.0+10607+f4da7515.s390x.rpm
criu-debuginfo-3.15-1.module+el8.4.0+10607+f4da7515.s390x.rpm
criu-debugsource-3.15-1.module+el8.4.0+10607+f4da7515.s390x.rpm
crun-0.18-1.module+el8.4.0+10607+f4da7515.s390x.rpm
crun-debuginfo-0.18-1.module+el8.4.0+10607+f4da7515.s390x.rpm
crun-debugsource-0.18-1.module+el8.4.0+10607+f4da7515.s390x.rpm
fuse-overlayfs-1.4.0-2.module+el8.4.0+10607+f4da7515.s390x.rpm
fuse-overlayfs-debuginfo-1.4.0-2.module+el8.4.0+10607+f4da7515.s390x.rpm
fuse-overlayfs-debugsource-1.4.0-2.module+el8.4.0+10607+f4da7515.s390x.rpm
libslirp-4.3.1-1.module+el8.4.0+10607+f4da7515.s390x.rpm
libslirp-debuginfo-4.3.1-1.module+el8.4.0+10607+f4da7515.s390x.rpm
libslirp-debugsource-4.3.1-1.module+el8.4.0+10607+f4da7515.s390x.rpm
libslirp-devel-4.3.1-1.module+el8.4.0+10607+f4da7515.s390x.rpm
oci-seccomp-bpf-hook-1.2.0-2.module+el8.4.0+10607+f4da7515.s390x.rpm
oci-seccomp-bpf-hook-debuginfo-1.2.0-2.module+el8.4.0+10607+f4da7515.s390x.rpm
oci-seccomp-bpf-hook-debugsource-1.2.0-2.module+el8.4.0+10607+f4da7515.s390x.rpm
podman-3.0.1-6.module+el8.4.0+10607+f4da7515.s390x.rpm
podman-catatonit-3.0.1-6.module+el8.4.0+10607+f4da7515.s390x.rpm
podman-catatonit-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.s390x.rpm
podman-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.s390x.rpm
podman-debugsource-3.0.1-6.module+el8.4.0+10607+f4da7515.s390x.rpm
podman-plugins-3.0.1-6.module+el8.4.0+10607+f4da7515.s390x.rpm
podman-plugins-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.s390x.rpm
podman-remote-3.0.1-6.module+el8.4.0+10607+f4da7515.s390x.rpm
podman-remote-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.s390x.rpm
podman-tests-3.0.1-6.module+el8.4.0+10607+f4da7515.s390x.rpm
python3-criu-3.15-1.module+el8.4.0+10607+f4da7515.s390x.rpm
runc-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.s390x.rpm
runc-debuginfo-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.s390x.rpm
runc-debugsource-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.s390x.rpm
skopeo-1.2.2-8.module+el8.4.0+10607+f4da7515.s390x.rpm
skopeo-debuginfo-1.2.2-8.module+el8.4.0+10607+f4da7515.s390x.rpm
skopeo-debugsource-1.2.2-8.module+el8.4.0+10607+f4da7515.s390x.rpm
skopeo-tests-1.2.2-8.module+el8.4.0+10607+f4da7515.s390x.rpm
slirp4netns-1.1.8-1.module+el8.4.0+10607+f4da7515.s390x.rpm
slirp4netns-debuginfo-1.1.8-1.module+el8.4.0+10607+f4da7515.s390x.rpm
slirp4netns-debugsource-1.1.8-1.module+el8.4.0+10607+f4da7515.s390x.rpm

x86_64:
buildah-1.19.7-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
buildah-debuginfo-1.19.7-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
buildah-debugsource-1.19.7-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
buildah-tests-1.19.7-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
buildah-tests-debuginfo-1.19.7-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
conmon-2.0.26-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
conmon-debuginfo-2.0.26-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
conmon-debugsource-2.0.26-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
containernetworking-plugins-0.9.1-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
containernetworking-plugins-debuginfo-0.9.1-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
containernetworking-plugins-debugsource-0.9.1-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
containers-common-1.2.2-8.module+el8.4.0+10607+f4da7515.x86_64.rpm
crit-3.15-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
criu-3.15-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
criu-debuginfo-3.15-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
criu-debugsource-3.15-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
crun-0.18-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
crun-debuginfo-0.18-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
crun-debugsource-0.18-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
fuse-overlayfs-1.4.0-2.module+el8.4.0+10607+f4da7515.x86_64.rpm
fuse-overlayfs-debuginfo-1.4.0-2.module+el8.4.0+10607+f4da7515.x86_64.rpm
fuse-overlayfs-debugsource-1.4.0-2.module+el8.4.0+10607+f4da7515.x86_64.rpm
libslirp-4.3.1-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
libslirp-debuginfo-4.3.1-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
libslirp-debugsource-4.3.1-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
libslirp-devel-4.3.1-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
oci-seccomp-bpf-hook-1.2.0-2.module+el8.4.0+10607+f4da7515.x86_64.rpm
oci-seccomp-bpf-hook-debuginfo-1.2.0-2.module+el8.4.0+10607+f4da7515.x86_64.rpm
oci-seccomp-bpf-hook-debugsource-1.2.0-2.module+el8.4.0+10607+f4da7515.x86_64.rpm
podman-3.0.1-6.module+el8.4.0+10607+f4da7515.x86_64.rpm
podman-catatonit-3.0.1-6.module+el8.4.0+10607+f4da7515.x86_64.rpm
podman-catatonit-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.x86_64.rpm
podman-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.x86_64.rpm
podman-debugsource-3.0.1-6.module+el8.4.0+10607+f4da7515.x86_64.rpm
podman-plugins-3.0.1-6.module+el8.4.0+10607+f4da7515.x86_64.rpm
podman-plugins-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.x86_64.rpm
podman-remote-3.0.1-6.module+el8.4.0+10607+f4da7515.x86_64.rpm
podman-remote-debuginfo-3.0.1-6.module+el8.4.0+10607+f4da7515.x86_64.rpm
podman-tests-3.0.1-6.module+el8.4.0+10607+f4da7515.x86_64.rpm
python3-criu-3.15-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
runc-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.x86_64.rpm
runc-debuginfo-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.x86_64.rpm
runc-debugsource-1.0.0-70.rc92.module+el8.4.0+10607+f4da7515.x86_64.rpm
skopeo-1.2.2-8.module+el8.4.0+10607+f4da7515.x86_64.rpm
skopeo-debuginfo-1.2.2-8.module+el8.4.0+10607+f4da7515.x86_64.rpm
skopeo-debugsource-1.2.2-8.module+el8.4.0+10607+f4da7515.x86_64.rpm
skopeo-tests-1.2.2-8.module+el8.4.0+10607+f4da7515.x86_64.rpm
slirp4netns-1.1.8-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
slirp4netns-debuginfo-1.1.8-1.module+el8.4.0+10607+f4da7515.x86_64.rpm
slirp4netns-debugsource-1.1.8-1.module+el8.4.0+10607+f4da7515.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/

7. References:

https://access.redhat.com/security/cve/CVE-2020-29652
https://access.redhat.com/security/cve/CVE-2021-20199
https://access.redhat.com/security/updates/classification/#moderate
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.4_release_notes/

8. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2021 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=wKpw
-----END PGP SIGNATURE-----

--
RHSA-announce mailing list
[email protected]
https://listman.redhat.com/mailman/listinfo/rhsa-announce