(RHSA-2020:1926) Important: container-tools:1.0 security and bug fix update

2020-04-28T20:06:48
ID RHSA-2020:1926
Type redhat
Reporter RedHat
Modified 2020-04-28T20:43:19

Description

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

Security Fix(es):

  • buildah: Crafted input tar file may lead to local file overwrite during image build process (CVE-2020-10696)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • conflicting requests: failed to install container-tools:1.0 (BZ#1813776)

  • podman run container error with avc denied (BZ#1816541)