SUSE-SU-2021:1954-1 -- SLES containerd, docker, runcID: oval:org.secpod.oval:def:89044390 | Date: (C)2021-06-18 (M)2023-04-03 |
Class: PATCH | Family: unix |
This update for containerd, docker, runc fixes the following issues: Docker was updated to 20.10.6-ce * Switch version to use -ce suffix rather than _ce to avoid confusing other tools . * CVE-2021-21284: Fixed a potential privilege escalation when the root user in the remapped namespace has access to the host filesystem * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest crashes the dockerd daemon . * btrfs quotas being removed by Docker regularly runc was updated to v1.0.0~rc93 . * Use the upstream runc package . * Fixed /dev/null is not available . * CVE-2021-30465: Fixed a symlink-exchange attack vulnarability . containerd was updated to v1.4.4 * CVE-2021-21334: Fixed a potential information leak through environment variables . * Handle a requirement from docker .
Platform: |
SUSE Linux Enterprise Server 15 |
SUSE Linux Enterprise Server 15 SP1 |
Product: |
containerd |
docker |
runc |