AlmaLinux 2324 Published by

A container-tools:2.0 security update has been released for AlmaLinux.



ALSA-2022:1566 Moderate: container-tools:2.0 security update


Type:
security

Severity:
moderate

Release date:
2022-04-28

Description
Security Fix(es):
* podman: Default inheritable capabilities for linux container should be empty (CVE-2022-27649)
* buildah: Default inheritable capabilities for linux container should be empty (CVE-2022-27651)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:
CVE-2022-27649
CVE-2022-27651

Updates packages:
buildah-1.11.6-10.module_el8.5.0+2635+e4386a39.x86_64.rpm
buildah-tests-1.11.6-10.module_el8.5.0+2635+e4386a39.x86_64.rpm
cockpit-podman-11-1.module_el8.5.0+2635+e4386a39.noarch.rpm
conmon-2.0.15-1.module_el8.5.0+2635+e4386a39.x86_64.rpm
container-selinux-2.130.0-1.module_el8.5.0+2635+e4386a39.noarch.rpm
containernetworking-plugins-0.8.3-4.module_el8.5.0+2635+e4386a39.x86_64.rpm
containers-common-0.1.41-4.module_el8.5.0+2635+e4386a39.x86_64.rpm
crit-3.12-9.module_el8.5.0+2635+e4386a39.x86_64.rpm
criu-3.12-9.module_el8.5.0+2635+e4386a39.x86_64.rpm
fuse-overlayfs-0.7.8-1.module_el8.5.0+2635+e4386a39.x86_64.rpm
podman-1.6.4-28.module_el8.5.0+2635+e4386a39.x86_64.rpm
podman-docker-1.6.4-28.module_el8.5.0+2635+e4386a39.noarch.rpm
podman-remote-1.6.4-28.module_el8.5.0+2635+e4386a39.x86_64.rpm
podman-tests-1.6.4-28.module_el8.5.0+2635+e4386a39.x86_64.rpm
python-podman-api-1.2.0-0.2.gitd0a45fe.module_el8.5.0+2635+e4386a39.noarch.rpm
python3-criu-3.12-9.module_el8.5.0+2635+e4386a39.x86_64.rpm
runc-1.0.0-66.rc10.module_el8.5.0+2635+e4386a39.x86_64.rpm
skopeo-0.1.41-4.module_el8.5.0+2635+e4386a39.x86_64.rpm
skopeo-tests-0.1.41-4.module_el8.5.0+2635+e4386a39.x86_64.rpm
slirp4netns-0.4.2-3.git21fdece.module_el8.5.0+2635+e4386a39.x86_64.rpm
toolbox-0.0.7-1.module_el8.5.0+2635+e4386a39.noarch.rpm
udica-0.2.1-2.module_el8.5.0+2635+e4386a39.noarch.rpm

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2022:1566 Moderate: container-tools:2.0 security update