(RHSA-2020:3053) Moderate: container-tools:rhel8 security, bug fix, and enhancement update

2020-07-2115:01:40

access.redhat.com

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

22.3%

JSON

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

Security Fix(es):

QEMU: slirp: use-after-free in ip_reass() function in ip_input.c (CVE-2020-1983)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.2 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHatanyppc64lelibslirp-debugsource< 4.3.0-3.module+el8.2.1+6816+bedf4f91libslirp-debugsource-4.3.0-3.module+el8.2.1+6816+bedf4f91.ppc64le.rpm
RedHatanyppc64lecontainernetworking-plugins< 0.8.6-1.module+el8.2.1+6626+598993b4containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4.ppc64le.rpm
RedHatanyaarch64python3-criu< 3.14-2.module+el8.2.1+6750+e53a300cpython3-criu-3.14-2.module+el8.2.1+6750+e53a300c.aarch64.rpm
RedHatanyaarch64slirp4netns< 1.0.1-1.module+el8.2.1+6595+03641d72slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72.aarch64.rpm
RedHatanyppc64lepodman-remote< 1.9.3-2.module+el8.2.1+6867+366c07d6podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6.ppc64le.rpm
RedHatanyaarch64buildah-tests-debuginfo< 1.14.9-1.module+el8.2.1+6689+748e6520buildah-tests-debuginfo-1.14.9-1.module+el8.2.1+6689+748e6520.aarch64.rpm
RedHatanyx86_64libslirp< 4.3.0-3.module+el8.2.1+6816+bedf4f91libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91.x86_64.rpm
RedHatanyaarch64buildah< 1.14.9-1.module+el8.2.1+6689+748e6520buildah-1.14.9-1.module+el8.2.1+6689+748e6520.aarch64.rpm
RedHatanynoarchcontainer-selinux< 2.135.0-1.module+el8.2.1+6849+893e4f4acontainer-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a.noarch.rpm
RedHatanys390xpodman-remote< 1.9.3-2.module+el8.2.1+6867+366c07d6podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	any	ppc64le	libslirp-debugsource	< 4.3.0-3.module+el8.2.1+6816+bedf4f91	libslirp-debugsource-4.3.0-3.module+el8.2.1+6816+bedf4f91.ppc64le.rpm
RedHat	any	ppc64le	containernetworking-plugins	< 0.8.6-1.module+el8.2.1+6626+598993b4	containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4.ppc64le.rpm
RedHat	any	aarch64	python3-criu	< 3.14-2.module+el8.2.1+6750+e53a300c	python3-criu-3.14-2.module+el8.2.1+6750+e53a300c.aarch64.rpm
RedHat	any	aarch64	slirp4netns	< 1.0.1-1.module+el8.2.1+6595+03641d72	slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72.aarch64.rpm
RedHat	any	ppc64le	podman-remote	< 1.9.3-2.module+el8.2.1+6867+366c07d6	podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6.ppc64le.rpm
RedHat	any	aarch64	buildah-tests-debuginfo	< 1.14.9-1.module+el8.2.1+6689+748e6520	buildah-tests-debuginfo-1.14.9-1.module+el8.2.1+6689+748e6520.aarch64.rpm
RedHat	any	x86_64	libslirp	< 4.3.0-3.module+el8.2.1+6816+bedf4f91	libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91.x86_64.rpm
RedHat	any	aarch64	buildah	< 1.14.9-1.module+el8.2.1+6689+748e6520	buildah-1.14.9-1.module+el8.2.1+6689+748e6520.aarch64.rpm
RedHat	any	noarch	container-selinux	< 2.135.0-1.module+el8.2.1+6849+893e4f4a	container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a.noarch.rpm
RedHat	any	s390x	podman-remote	< 1.9.3-2.module+el8.2.1+6867+366c07d6	podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6.s390x.rpm