The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fix: * golang: net/http/httputil: panic due to racy read of persistConn after handler panic * cri-o: memory exhaustion on the node when access to the kube api * golang: crash in a golang.org/x/crypto/ssh server * opencontainers: OCI manifest and index parsing confusion * buildah: possible information disclosure and modification * runc: incorrect handling of inheritable capabilities For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.7 Release Notes linked from the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed : 1820551 - Automatically starting a container on boot is not possible through cockpit WebUI 1941727 - Module meta data is wrong 1945929 - Every podman run invocation generates two Couldn"t stat device /dev/char/10:200: No such file or directory lines in the journal 1974423 - No equivalent buildah bud argument to docker build --ssh 1995656 - CVE-2021-36221 golang: net/http/httputil: panic due to racy read of persistConn after handler panic 1996050 - [RFE] podman to create a rootless container that attempts to publish ports from a host with static IPv6 address. 2005866 - Udica was rebased prematurely 2009264 - Cannot get logs with --follow