Red Hat OpenStack 16.2: RHSA-2022-6517-01 Important Container Update
red hat
September 14, 2022
Red Hat OpenStack Platform 16.2 (Train) director operator containers, with several Important security fixes, are available for technology preview
Solution
OSP 16.2.z Release - OSP Director Operator Containers
Summary
Release osp-director-operator images
Security Fix(es):
* CVE-2022-30631 golang: compress/gzip: stack exhaustion in Reader.Read
[important]
* CVE-2021-41103 golang: containerd: insufficiently restricted permissions
on container root and plugin directories [medium]
References
https://access.redhat.com/security/cve/CVE-2021-41103 https://access.redhat.com/security/cve/CVE-2022-1292 https://access.redhat.com/security/cve/CVE-2022-1586 https://access.redhat.com/security/cve/CVE-2022-2068 https://access.redhat.com/security/cve/CVE-2022-2097 https://access.redhat.com/security/cve/CVE-2022-30631 https://access.redhat.com/security/updates/classification/#important
Package List
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Advisory ID: RHSA-2022:6517-01
Product: Red Hat OpenStack Platform
Advisory URL: https://access.redhat.com/errata/RHSA-2022:6517
Issue date: 2022-09-14
Topic
Red Hat OpenStack Platform 16.2 (Train) director operator containers, withseveral Important security fixes, are available for technology preview.
Relevant Releases Architectures
Bugs Fixed
2011007 - CVE-2021-41103 containerd: insufficiently restricted permissions on container root and plugin directories
2107342 - CVE-2022-30631 golang: compress/gzip: stack exhaustion in Reader.Read
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!