RHSA-2020:1234-01 -- Redhat dockerID: oval:org.secpod.oval:def:503632 | Date: (C)2020-04-06 (M)2023-04-03 |
Class: PATCH | Family: unix |
Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that runs virtually anywhere. Security Fix: * runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc * proglottis/gpgme: Use-after-free in GPGME bindings during container image pull * containers/image: Container images read entire image manifest into memory For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * Whitelist statx in docker * Upgrading docker resulting into increase Systemd logs * docker should be linked against gpgme-pthread * docker cannot be updated to 108 on rhos13 as a container fails to start with "pivot_root invalid argument" error. * OVS pods are unable to stop when running under docker version 1.13.1-108
Platform: |
Red Hat Enterprise Linux 7 |