Security update for containerd, docker
Announcement ID: | SUSE-SU-2022:1507-1 |
---|---|
Rating: | important |
References: | |
Cross-References: | |
CVSS scores: |
|
Affected Products: |
|
An update that solves five vulnerabilities and has one security fix can now be installed.
Description:
This update for containerd, docker fixes the following issues:
- CVE-2022-24769: Fixed incorrect default inheritable capabilities (bsc#1197517).
- CVE-2022-23648: Fixed directory traversal issue (bsc#1196441).
- CVE-2021-41190: Fixed parsing confusions in OCI manifest and index (bsc#1193273).
- CVE-2022-27191: Fixed a crash in a golang.org/x/crypto/ssh server (bsc#1197284).
- CVE-2021-43565: Fixed a panic in golang.org/x/crypto by empty plaintext packet (bsc#1193930).
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
Containers Module 12
zypper in -t patch SUSE-SLE-Module-Containers-12-2022-1507=1
Package List:
-
Containers Module 12 (ppc64le s390x x86_64)
- docker-20.10.14_ce-98.80.1
- containerd-1.5.11-16.57.1
- docker-debuginfo-20.10.14_ce-98.80.1
References:
- https://www.suse.com/security/cve/CVE-2021-41190.html
- https://www.suse.com/security/cve/CVE-2021-43565.html
- https://www.suse.com/security/cve/CVE-2022-23648.html
- https://www.suse.com/security/cve/CVE-2022-24769.html
- https://www.suse.com/security/cve/CVE-2022-27191.html
- https://bugzilla.suse.com/show_bug.cgi?id=1192814
- https://bugzilla.suse.com/show_bug.cgi?id=1193273
- https://bugzilla.suse.com/show_bug.cgi?id=1193930
- https://bugzilla.suse.com/show_bug.cgi?id=1196441
- https://bugzilla.suse.com/show_bug.cgi?id=1197284
- https://bugzilla.suse.com/show_bug.cgi?id=1197517