ELSA-2020-3053
- ULN >
- Oracle Linux Errata repository >
- ELSA-2020-3053
ELSA-2020-3053 - container-tools:ol8 security, bug fix, and enhancement update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2020-08-06 |
Description
buildah
[1.14.9-1.0.1]
- Fixes troubles with oracle registry login [Orabug: 29937283]
[1.14.9-1]
- update to https://github.com/containers/buildah/releases/tag/v1.14.9
- Related: RHELPLAN-39206
[1.14.8-2]
- make container-selinux a soft dependency
- Related: #1806044
[1.14.8-1]
- update to https://github.com/containers/buildah/releases/tag/v1.14.8
- Related: RHELPLAN-39206
[1.14.7-1]
- initial rhel8-8.2.1 build
- update to https://github.com/containers/buildah/releases/tag/v1.14.7
- Related: RHELPLAN-39206
cockpit-podman
[17-1]
- update to https://github.com/cockpit-project/cockpit-podman/releases/tag/17
- Related: RHELPLAN-39206
[16-1]
- update to https://github.com/cockpit-project/cockpit-podman/releases/tag/v16
- Related: RHELPLAN-39206
[15-1]
- update to https://github.com/cockpit-project/cockpit-podman/releases/tag/15
- Related: RHELPLAN-39206
[12-1]
- Configure CPU share for system containers
- Translation updates
conmon
[2:2.0.17-1.0.1]
- Remove upstream references [Orabug: 30871880]
[2:2.0.17-1]
- update to https://github.com/containers/conmon/releases/tag/v2.0.17
- Related: RHELPLAN-39206
[2:2.0.16-1]
- update to https://github.com/containers/conmon/releases/tag/v2.0.16
- Related: RHELPLAN-39206
[2:2.0.15-1]
- update to 2.0.15
- Related: #1821204
containernetworking-plugins
[0.8.6-1]
- update to https://github.com/containernetworking/plugins/releases/tag/v0.8.6
- Related: RHELPLAN-39206
[0.8.5-1]
- update to https://github.com/containernetworking/plugins/archive/v0.8.5.tar.gz
- Related: RHELPLAN-39206
container-selinux
[2:2.135.0-1]
- update to https://github.com/containers/container-selinux/releases/tag/v2.135.0
- Related: RHELPLAN-39206
[2:2.134.0-1]
- update to https://github.com/containers/container-selinux/releases/tag/v2.134.0
- Related: RHELPLAN-39206
[2:2.132.0-2]
- sync with Fedora and install selinux contexts file into /usr/share/containers/selinux/contexts
(thanks to Dan Walsh)
- do not print error in RPM transaction log when customizable_types file is missing
- Related: RHELPLAN-39206
[2:2.132.0-1]
- update to https://github.com/containers/container-selinux/releases/tag/v2.132.0
- Related: RHELPLAN-39206
[2:2.131.0-1]
- update to https://github.com/containers/container-selinux/releases/tag/v2.131.0
- Related: RHELPLAN-39206
[2:2.130.0-1]
- update to https://github.com/containers/container-selinux/releases/tag/v2.130.0
- dont use macros in changelog
- Related: #1821204
criu
[3.14-2]
- fix 'Need to fix bugs found by coverity.'
- Resolves: #1838991
[3.14-1]
- update to https://github.com/checkpoint-restore/criu/releases/tag/v3.14
- Related: RHELPLAN-39206
[3.13-1]
- update to 3.13
- Related: RHELPLAN-39206
fuse-overlayfs
[1.0.0-2]
- remove bogus Provides from spec
- Related: RHELPLAN-39206
[1.0.0-1]
- update to https://github.com/containers/fuse-overlayfs/releases/tag/v1.0.0
- Related: RHELPLAN-39206
libslirp
[4.3.0-3]
- fix static analysis issues merged upstream
(https://gitlab.freedesktop.org/slirp/libslirp/-/merge_requests/41)
- Related: #1823657
[4.3.0-2]
- initial libslirp build for container-tools 8.2.1 module
- Resolves: #1823657
[4.3.0-1]
- New v4.3.0 release
podman
[1.9.3-2.0.1]
- delivering fix for [Orabug: 29874238] by Nikita Gerasimov
[1.9.3-2]
- fix 'Signature verification incorrectly uses mirrors references'
- Resolves: #1829061
[1.9.3-1]
- update to https://github.com/containers/libpod/releases/tag/v1.9.3
- Related: RHELPLAN-39206
[1.9.2-3]
- fix 'Podman support for FIPS Mode requires a bind mount inside the container'
- version the oci-systemd-hook obsolete
- Related: #1784950
- Related: #1836180
[1.9.2-2]
- obsolete oci-systemd-hook package
- Resolves: #1836180
[1.9.2-1]
- update to https://github.com/containers/libpod/releases/tag/v1.9.2
- Related: RHELPLAN-39206
[1.9.1-2]
- make container-selinux a soft dependency
- Related: #1806044
[1.9.1-1]
- update to https://github.com/containers/libpod/releases/tag/v1.9.1
- Related: RHELPLAN-39206
[1.9.0-2]
- remove containers-mounts.conf man page, this is shipped by skopeo: containers-common subpackage
- Related: RHELPLAN-39206
[1.9.0-1]
- update to https://github.com/containers/libpod/releases/tag/v1.9.0
- Related: RHELPLAN-39206
python-podman-api
[1.2.0-0.2.gitd0a45fe]
- revert update to 1.6.0 due to new python3-pbr dependency which
is not in RHEL
- Related: RHELPLAN-25139
[1.2.0-0.1.gitd0a45fe]
- Initial package
runc
[1.0.0-66.rc10]
- drop container-selinux runtime dependency
- Related: #1806044
[1.0.0-65.rc10]
- address CVE-2019-19921 by updating to rc10
- Resolves: #1801887
[1.0.0-64.rc9]
- use no_openssl in BUILDTAGS (no vendored crypto in runc)
- Related: RHELPLAN-25139
[1.0.0-63.rc9]
- be sure to use golang >= 1.12.12-4
- Related: RHELPLAN-25139
[1.0.0-62.rc9]
- rebuild because of CVE-2019-9512 and CVE-2019-9514
- Resolves: #1766331, #1766303
[1.0.0-61.rc9]
- update to runc 1.0.0-rc9 release
- amend golang deps
- fixes CVE-2019-16884
- Resolves: #1759651
[1.0.0-60.rc8]
- Resolves: #1721247 - enable fips mode
[1.0.0-59.rc8]
- Resolves: #1720654 - rebase to v1.0.0-rc8
[1.0.0-57.rc5.dev.git2abd837]
- Resolves: #1693424 - podman rootless: cannot specify gid= mount options
[1.0.0-56.rc5.dev.git2abd837]
- change-default-root patch not needed as theres no docker on rhel8
[1.0.0-55.rc5.dev.git2abd837]
- Resolves: CVE-2019-5736
[1.0.0-54.rc5.dev.git2abd837]
- re-enable debuginfo
[1.0.0-53.rc5.dev.git2abd837]
- go toolset not in scl anymore
[1.0.0-52.rc5.dev.git2abd837]
- rebase
skopeo
[1:1.0.0-1.0.1]
- Add oracle registry into the conf file [Orabug: 29845934 31306708]
- Fix oracle registry login issues [Orabug: 29937192]
[1:1.0.0-1]
- update to https://github.com/containers/skopeo/releases/tag/v1.0.0
- Related: RHELPLAN-39206
[1:0.2.0-5]
- follow Dans suggestion to deliver seccomp.json and storage.conf
from Fedora and not directly from upstream yet
- Related: RHELPLAN-39206
[1:0.2.0-4]
- re-include ppc64 arch, golang doesnt seem broken there any more
- synchronize man pages and config files with upstream
- Related: RHELPLAN-39206
[1:0.2.0-3]
- include and ship containers.conf
- Resolves: #1826486
[1:0.2.0-2]
- add docker.io into the default registry list
- Related: RHELPLAN-39206
[1:0.2.0-1]
- update to https://github.com/containers/skopeo/releases/tag/v0.2.0
- initial rhel8-8.2.1 build
- Related: RHELPLAN-39206
slirp4netns
[1.0.1-1]
- update to https://github.com/rootless-containers/slirp4netns/archive/v1.0.1.tar.gz
- Related: RHELPLAN-39206
[0.4.3-1]
- update to https://github.com/rootless-containers/slirp4netns/archive/v0.4.3.tar.gz
- Related: RHELPLAN-39206
Related CVEs
| CVE-2020-1983 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle Linux 8 (aarch64) | buildah-1.14.9-1.0.1.module+el8.2.1+7658+86e51d52.src.rpm | b4747e8ed663b4f4f786800daa00094f | - |
| cockpit-podman-17-1.module+el8.2.1+7658+86e51d52.src.rpm | 9e9727dca2f1a34f6ffd1c7a2b7ef5cf | - | |
| conmon-2.0.17-1.0.1.module+el8.2.1+7658+86e51d52.src.rpm | 1fcaca5083a36b028d57256794a8f741 | - | |
| container-selinux-2.135.0-1.module+el8.2.1+7658+86e51d52.src.rpm | c86fc14be98bdf1b1e098aa35a1afc65 | - | |
| containernetworking-plugins-0.8.6-1.module+el8.2.1+7658+86e51d52.src.rpm | cf68ffced854351d4132564051cac217 | - | |
| criu-3.14-2.module+el8.2.1+7658+86e51d52.src.rpm | 4165e4bdd5cd45c6150658aaaca6fc6e | - | |
| fuse-overlayfs-1.0.0-2.module+el8.2.1+7658+86e51d52.src.rpm | 2d637c7174c01fd1876eebf02fe86352 | - | |
| libslirp-4.3.0-3.module+el8.2.1+7658+86e51d52.src.rpm | 3eb2910cc0192c21fa2d6a13c9184bca | - | |
| podman-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.src.rpm | 90957a7f071b7d9aeeafd2c57a28f7b7 | - | |
| python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+7658+86e51d52.src.rpm | 350dadb799988aba031b95ec250b0ff0 | - | |
| runc-1.0.0-66.rc10.module+el8.2.1+7658+86e51d52.src.rpm | 2efda631bb6bd451a6c7234c27ba79da | - | |
| skopeo-1.0.0-1.0.1.module+el8.2.1+7658+86e51d52.src.rpm | db90682f0452b9cec26279cd6ff52402 | - | |
| slirp4netns-1.0.1-1.module+el8.2.1+7658+86e51d52.src.rpm | dc078a67f458d6f54fe406d4baf862ab | - | |
| udica-0.2.1-2.module+el8.2.1+7658+86e51d52.src.rpm | 4814b28799dc1c6d44660e887d450c6d | - | |
| buildah-1.14.9-1.0.1.module+el8.2.1+7658+86e51d52.aarch64.rpm | a7ff3508f8eb44117e8647ef76e26832 | - | |
| buildah-tests-1.14.9-1.0.1.module+el8.2.1+7658+86e51d52.aarch64.rpm | d39f67b578f15dbf9de57fac2b3f1f31 | - | |
| cockpit-podman-17-1.module+el8.2.1+7658+86e51d52.noarch.rpm | 357270a20cdcca9ba90def555aba8add | - | |
| conmon-2.0.17-1.0.1.module+el8.2.1+7658+86e51d52.aarch64.rpm | 642f28c9b77b20e04a4eacc8ae23896e | - | |
| container-selinux-2.135.0-1.module+el8.2.1+7658+86e51d52.noarch.rpm | 0c7ef5b4ec34231c2febff4cbe6d9fa8 | - | |
| containernetworking-plugins-0.8.6-1.module+el8.2.1+7658+86e51d52.aarch64.rpm | bdd5336f0121b6e267fbae483a2e481f | - | |
| containers-common-1.0.0-1.0.1.module+el8.2.1+7658+86e51d52.aarch64.rpm | e850006520f18c9da16c47740f156fc3 | - | |
| crit-3.14-2.module+el8.2.1+7658+86e51d52.aarch64.rpm | a485439f8e84314d9faeb692079990cb | - | |
| criu-3.14-2.module+el8.2.1+7658+86e51d52.aarch64.rpm | bd45f29c6d1cdae3d85d58319556fab1 | - | |
| fuse-overlayfs-1.0.0-2.module+el8.2.1+7658+86e51d52.aarch64.rpm | c36e28692a7cc94022a21991c0bc944d | - | |
| libslirp-4.3.0-3.module+el8.2.1+7658+86e51d52.aarch64.rpm | baba359b738b5b0f0a1bda8f5a32ec88 | - | |
| libslirp-devel-4.3.0-3.module+el8.2.1+7658+86e51d52.aarch64.rpm | 347da7fbc5492bbf2d0380798c797da0 | - | |
| podman-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.aarch64.rpm | 9258b0e99426d1041dbc7909de432763 | - | |
| podman-docker-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.noarch.rpm | 17428e93061b6130841de1c88a40e122 | - | |
| podman-remote-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.aarch64.rpm | fe04248b622ebb5ec794f5f79b670c96 | - | |
| podman-tests-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.aarch64.rpm | e584c6cd6d5a0274f42bb13ad903fa20 | - | |
| python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+7658+86e51d52.noarch.rpm | bc2a784456092eaa1ea504075d2f7458 | - | |
| python3-criu-3.14-2.module+el8.2.1+7658+86e51d52.aarch64.rpm | 9477e404f94a083ae4d9cde743bb7751 | - | |
| runc-1.0.0-66.rc10.module+el8.2.1+7658+86e51d52.aarch64.rpm | ce2324e1ecbe4f82592e63ace07265f9 | - | |
| skopeo-1.0.0-1.0.1.module+el8.2.1+7658+86e51d52.aarch64.rpm | 58d545c7a1ad21afab5ff719eab80cce | - | |
| skopeo-tests-1.0.0-1.0.1.module+el8.2.1+7658+86e51d52.aarch64.rpm | 482ee4df1bc68282c7a69f988e311ac0 | - | |
| slirp4netns-1.0.1-1.module+el8.2.1+7658+86e51d52.aarch64.rpm | 1467af07bb5abc583c15f1c70b2ff0c6 | - | |
| udica-0.2.1-2.module+el8.2.1+7658+86e51d52.noarch.rpm | 57d88d397a708549eb144c622d74c505 | - | |
| Oracle Linux 8 (x86_64) | buildah-1.14.9-1.0.1.module+el8.2.1+7658+86e51d52.src.rpm | b4747e8ed663b4f4f786800daa00094f | - |
| cockpit-podman-17-1.module+el8.2.1+7658+86e51d52.src.rpm | 9e9727dca2f1a34f6ffd1c7a2b7ef5cf | - | |
| conmon-2.0.17-1.0.1.module+el8.2.1+7658+86e51d52.src.rpm | 1fcaca5083a36b028d57256794a8f741 | - | |
| container-selinux-2.135.0-1.module+el8.2.1+7658+86e51d52.src.rpm | c86fc14be98bdf1b1e098aa35a1afc65 | - | |
| containernetworking-plugins-0.8.6-1.module+el8.2.1+7658+86e51d52.src.rpm | cf68ffced854351d4132564051cac217 | - | |
| criu-3.14-2.module+el8.2.1+7658+86e51d52.src.rpm | 4165e4bdd5cd45c6150658aaaca6fc6e | - | |
| fuse-overlayfs-1.0.0-2.module+el8.2.1+7658+86e51d52.src.rpm | 2d637c7174c01fd1876eebf02fe86352 | - | |
| libslirp-4.3.0-3.module+el8.2.1+7658+86e51d52.src.rpm | 3eb2910cc0192c21fa2d6a13c9184bca | - | |
| podman-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.src.rpm | 90957a7f071b7d9aeeafd2c57a28f7b7 | - | |
| python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+7658+86e51d52.src.rpm | 350dadb799988aba031b95ec250b0ff0 | - | |
| runc-1.0.0-66.rc10.module+el8.2.1+7658+86e51d52.src.rpm | 2efda631bb6bd451a6c7234c27ba79da | - | |
| skopeo-1.0.0-1.0.1.module+el8.2.1+7658+86e51d52.src.rpm | db90682f0452b9cec26279cd6ff52402 | - | |
| slirp4netns-1.0.1-1.module+el8.2.1+7658+86e51d52.src.rpm | dc078a67f458d6f54fe406d4baf862ab | - | |
| udica-0.2.1-2.module+el8.2.1+7658+86e51d52.src.rpm | 4814b28799dc1c6d44660e887d450c6d | - | |
| buildah-1.14.9-1.0.1.module+el8.2.1+7658+86e51d52.x86_64.rpm | f85e242d06b15048319e2e23194f8f14 | - | |
| buildah-tests-1.14.9-1.0.1.module+el8.2.1+7658+86e51d52.x86_64.rpm | 543457bc651adae329e8c733db75c9c5 | - | |
| cockpit-podman-17-1.module+el8.2.1+7658+86e51d52.noarch.rpm | 357270a20cdcca9ba90def555aba8add | - | |
| conmon-2.0.17-1.0.1.module+el8.2.1+7658+86e51d52.x86_64.rpm | c5da65a0028f9200f90496ab993240d1 | - | |
| container-selinux-2.135.0-1.module+el8.2.1+7658+86e51d52.noarch.rpm | 0c7ef5b4ec34231c2febff4cbe6d9fa8 | - | |
| containernetworking-plugins-0.8.6-1.module+el8.2.1+7658+86e51d52.x86_64.rpm | 5cf0cfdb9c33e8aa423abbc4b064dd69 | - | |
| containers-common-1.0.0-1.0.1.module+el8.2.1+7658+86e51d52.x86_64.rpm | df19052e422947e18118c9c3509e4aee | - | |
| crit-3.14-2.module+el8.2.1+7658+86e51d52.x86_64.rpm | 04e068d5e6774d4949547ba29a0fc25d | - | |
| criu-3.14-2.module+el8.2.1+7658+86e51d52.x86_64.rpm | 7bf481cb5e5183f2bebe9bc259512e6e | - | |
| fuse-overlayfs-1.0.0-2.module+el8.2.1+7658+86e51d52.x86_64.rpm | f12e8602932356172f10401dabc91b76 | - | |
| libslirp-4.3.0-3.module+el8.2.1+7658+86e51d52.x86_64.rpm | 0532b1ebfeebe29706a1dc803cf39c0c | - | |
| libslirp-devel-4.3.0-3.module+el8.2.1+7658+86e51d52.x86_64.rpm | 123eab1588dd0839a384a16e9a083998 | - | |
| podman-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.x86_64.rpm | 10971d82d558a83df178e86d1fe6d5c0 | - | |
| podman-docker-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.noarch.rpm | 17428e93061b6130841de1c88a40e122 | - | |
| podman-remote-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.x86_64.rpm | 1f206ca5870371321176f8bca90a0a6a | - | |
| podman-tests-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.x86_64.rpm | 98176c5f9010c4cbce0f1f8410110d5b | - | |
| python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+7658+86e51d52.noarch.rpm | bc2a784456092eaa1ea504075d2f7458 | - | |
| python3-criu-3.14-2.module+el8.2.1+7658+86e51d52.x86_64.rpm | d1efdac850e35a50d3c8fcaae379f58d | - | |
| runc-1.0.0-66.rc10.module+el8.2.1+7658+86e51d52.x86_64.rpm | c7c9f33bed25127b5b0557e2584c4b52 | - | |
| skopeo-1.0.0-1.0.1.module+el8.2.1+7658+86e51d52.x86_64.rpm | a080ede07a1d319920d5b9823f052591 | - | |
| skopeo-tests-1.0.0-1.0.1.module+el8.2.1+7658+86e51d52.x86_64.rpm | b34cabb0fbd761b6f828bb96ad00c8b9 | - | |
| slirp4netns-1.0.1-1.module+el8.2.1+7658+86e51d52.x86_64.rpm | 247d8fa36639eb1c8ee7a34e06f440b6 | - | |
| udica-0.2.1-2.module+el8.2.1+7658+86e51d52.noarch.rpm | 57d88d397a708549eb144c622d74c505 | - | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
