Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

CENTOS: 2022:4578-2 Important: Libnetwork-Module Security Update

suse
Calendar Grey September 19, 2022
Dist Suse Esm H88
New patch released for SUSE libcontainers-common fixing several security flaws and issues to improve system integrity.
An update that solves 5 vulnerabilities and has one errata is now available

Summary

This update for libcontainers-common fixes the following issues: libcontainers-common was updated: - common component was updated to 0.44.0. - storage component was updated to 1.36.0. - image component was updated to 5.16.0. - podman component was updated to 3.3.1. 3.3.1: Bugfixes: - Fixed a bug where unit files created by `podman generate systemd` could not cleanup shut down containers when stopped by `systemctl stop` . - Fixed a bug where `podman machine` commands would not properly locate the `gvproxy` binary in some circumstances. - Fixed a bug where containers created as part of a pod using the `--pod-id-file` option would not join the pod's network namespace . - Fixed a bug where Podman, when using the systemd cgroups driver, could sometimes leak dbus sessions.

Topics%20covered

Topics Covered

security advisory moderate SUSE Linux Enterprise vulnerability issue SUSE CaaS Platform podman update libcontainers-common

References

#1176804 #1177598 #1181640 #1182998 #1188520

#1189893

Cross- CVE-2020-14370 CVE-2020-15157 CVE-2021-20199

CVE-2021-20291 CVE-2021-3602

CVSS scores:

CVE-2020-14370 (NVD) : 5.3 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

CVE-2020-14370 (SUSE): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

CVE-2020-15157 (NVD) : 6.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

CVE-2020-15157 (SUSE): 6.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N

CVE-2021-20199 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CVE-2021-20199 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

CVE-2021-20291 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CVE-2021-20291 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2022:3312-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate SUSE Linux Enterprise vulnerability issue SUSE CaaS Platform podman update libcontainers-common

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here