RHSA-2020:1379-01 -- Redhat buildah, cockpit-podman, conmon, container-selinux, containernetworking-plugins, fuse-overlayfs, podman, python-podman-api, runc, skopeo, slirp4netns, toolbox, udicaID: oval:org.secpod.oval:def:68479 | Date: (C)2021-01-22 (M)2023-12-20 |
Class: PATCH | Family: unix |
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fix: * QEMU: Slirp: potential OOB access due to unsafe snprintf usages For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * useradd and groupadd fail under rootless Buildah and podman [stream-container-tools-rhel8-rhel-8.1.1] * Podman support for FIPS Mode requires a bind mount inside the container [stream-container-tools-rhel8-rhel-8.1.1/buildah] * Podman support for FIPS Mode requires a bind mount inside the container [stream-container-tools-rhel8-rhel-8.1.1/podman] * fuse-overlayfs segfault [stream-container-tools-rhel8-rhel-8.1.1/fuse-overlayfs] * buildah COPY command is slow when .dockerignore file is not present [stream-container-tools-rhel8-rhel-8.1.1/buildah]
Platform: |
Red Hat Enterprise Linux 8 |
Product: |
buildah |
cockpit-podman |
conmon |
container-selinux |
containernetworking-plugins |
fuse-overlayfs |
podman |
python-podman-api |
runc |
skopeo |
slirp4netns |
toolbox |
udica |