Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-16884 (GCVE-0-2019-16884)
Vulnerability from cvelistv5 – Published: 2019-09-25 00:00 – Updated: 2024-08-05 01:24
VLAI?
EPSS
Summary
runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T01:24:48.342Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://github.com/opencontainers/runc/issues/2128"
},
{
"name": "FEDORA-2019-bd4843561c",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR/"
},
{
"name": "FEDORA-2019-3fc86a518b",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD/"
},
{
"name": "FEDORA-2019-96946c39dd",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF/"
},
{
"name": "openSUSE-SU-2019:2418",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html"
},
{
"name": "openSUSE-SU-2019:2434",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html"
},
{
"name": "RHSA-2019:3940",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3940"
},
{
"name": "RHSA-2019:4074",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4074"
},
{
"name": "RHSA-2019:4269",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"name": "openSUSE-SU-2020:0045",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html"
},
{
"name": "GLSA-202003-21",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202003-21"
},
{
"name": "USN-4297-1",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4297-1/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20220221-0004/"
},
{
"name": "[debian-lts-announce] 20230218 [SECURITY] [DLA 3322-1] golang-github-opencontainers-selinux security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00016.html"
},
{
"name": "[debian-lts-announce] 20230327 [SECURITY] [DLA 3369-1] runc security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00023.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-03-27T00:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://github.com/opencontainers/runc/issues/2128"
},
{
"name": "FEDORA-2019-bd4843561c",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR/"
},
{
"name": "FEDORA-2019-3fc86a518b",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD/"
},
{
"name": "FEDORA-2019-96946c39dd",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF/"
},
{
"name": "openSUSE-SU-2019:2418",
"tags": [
"vendor-advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html"
},
{
"name": "openSUSE-SU-2019:2434",
"tags": [
"vendor-advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html"
},
{
"name": "RHSA-2019:3940",
"tags": [
"vendor-advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3940"
},
{
"name": "RHSA-2019:4074",
"tags": [
"vendor-advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4074"
},
{
"name": "RHSA-2019:4269",
"tags": [
"vendor-advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"name": "openSUSE-SU-2020:0045",
"tags": [
"vendor-advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html"
},
{
"name": "GLSA-202003-21",
"tags": [
"vendor-advisory"
],
"url": "https://security.gentoo.org/glsa/202003-21"
},
{
"name": "USN-4297-1",
"tags": [
"vendor-advisory"
],
"url": "https://usn.ubuntu.com/4297-1/"
},
{
"url": "https://security.netapp.com/advisory/ntap-20220221-0004/"
},
{
"name": "[debian-lts-announce] 20230218 [SECURITY] [DLA 3322-1] golang-github-opencontainers-selinux security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00016.html"
},
{
"name": "[debian-lts-announce] 20230327 [SECURITY] [DLA 3369-1] runc security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00023.html"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-16884",
"datePublished": "2019-09-25T00:00:00",
"dateReserved": "2019-09-25T00:00:00",
"dateUpdated": "2024-08-05T01:24:48.342Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2019-16884\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2019-09-25T18:15:13.057\",\"lastModified\":\"2024-11-21T04:31:16.327\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.\"},{\"lang\":\"es\",\"value\":\"runc versiones hasta 1.0.0-rc8, como es usado en Docker versiones hasta 19.03.2-ce y otros productos, permite omitir la restricci\u00f3n de AppArmor porque el archivo libcontainer/rootfs_linux.go comprueba incorrectamente los destinos de montaje y, por lo tanto, una imagen Docker maliciosa puede ser montada sobre un directorio /proc .\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:P/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-863\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"0.0.1\",\"versionEndIncluding\":\"0.1.1\",\"matchCriteriaId\":\"3394AC83-30AA-444E-B8C5-3418FDCD7BE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:1.0.0:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"949172CC-EBB5-47F6-B987-207C802EED0F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:1.0.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6D87B50-2849-4F4D-A0F9-4F7EBA3C2647\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:1.0.0:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E580E25-F94C-4DA4-8718-15D5F1C3ADAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:1.0.0:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD565CE0-D9E9-4FD9-8998-8AC55030FAB7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:1.0.0:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"093326B1-448C-4E3B-886D-CAC8B6813BFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:1.0.0:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"F672C421-789D-4F21-B483-DA3EB251BA1D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:1.0.0:rc7:*:*:*:*:*:*\",\"matchCriteriaId\":\"E13C190A-D7CE-4204-8CEF-B7317D3FFBF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:runc:1.0.0:rc8:*:*:*:*:*:*\",\"matchCriteriaId\":\"15AEA3E2-A82F-4562-AFE6-B83A767B94E7\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:docker:docker:*:*:*:*:community:*:*:*\",\"versionEndIncluding\":\"19.03.2\",\"matchCriteriaId\":\"74332DAE-E215-47E8-AA37-0115F98B65C3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D100F7CE-FC64-4CC6-852A-6136D72DA419\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80F0FA5D-8D3B-4C0E-81E2-87998286AF33\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1E78106-58E6-4D59-990F-75DA575BFAD9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B620311B-34A3-48A6-82DF-6F078D7A4493\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"064E7BDD-4EF0-4A0D-A38D-8C75BAFEDCEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C85A84D-A70F-4B02-9E5D-CD9660ABF048\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"92BC9265-6959-4D37-BE5E-8C45E98992F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"831F0F47-3565-4763-B16F-C87B1FF2035E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E3F09B5-569F-4C58-9FCA-3C0953D107B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6897676D-53F9-45B3-B27F-7FF9A4C58D33\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E28F226A-CBC7-4A32-BE58-398FA5B42481\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B09ACF2D-D83F-4A86-8185-9569605D8EE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC10D919-57FD-4725-B8D2-39ECB476902F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A31C8344-3E02-4EB8-8BD8-4C84B7959624\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3940\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4074\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4269\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/opencontainers/runc/issues/2128\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/02/msg00016.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/03/msg00023.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://security.gentoo.org/glsa/202003-21\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220221-0004/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4297-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3940\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4074\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4269\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/opencontainers/runc/issues/2128\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/02/msg00016.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/03/msg00023.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202003-21\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220221-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/4297-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
FKIE_CVE-2019-16884
Vulnerability from fkie_nvd - Published: 2019-09-25 18:15 - Updated: 2024-11-21 04:31
Severity ?
Summary
runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linuxfoundation | runc | * | |
| linuxfoundation | runc | 1.0.0 | |
| linuxfoundation | runc | 1.0.0 | |
| linuxfoundation | runc | 1.0.0 | |
| linuxfoundation | runc | 1.0.0 | |
| linuxfoundation | runc | 1.0.0 | |
| linuxfoundation | runc | 1.0.0 | |
| linuxfoundation | runc | 1.0.0 | |
| linuxfoundation | runc | 1.0.0 | |
| docker | docker | * | |
| fedoraproject | fedora | 29 | |
| fedoraproject | fedora | 30 | |
| fedoraproject | fedora | 31 | |
| opensuse | leap | 15.0 | |
| opensuse | leap | 15.1 | |
| redhat | openshift_container_platform | 4.1 | |
| redhat | openshift_container_platform | 4.2 | |
| redhat | enterprise_linux | 8.0 | |
| redhat | enterprise_linux_eus | 8.1 | |
| redhat | enterprise_linux_eus | 8.2 | |
| redhat | enterprise_linux_eus | 8.4 | |
| redhat | enterprise_linux_server_aus | 8.2 | |
| redhat | enterprise_linux_server_aus | 8.4 | |
| redhat | enterprise_linux_server_tus | 8.2 | |
| redhat | enterprise_linux_server_tus | 8.4 | |
| canonical | ubuntu_linux | 18.04 | |
| canonical | ubuntu_linux | 19.10 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:linuxfoundation:runc:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3394AC83-30AA-444E-B8C5-3418FDCD7BE0",
"versionEndIncluding": "0.1.1",
"versionStartIncluding": "0.0.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "949172CC-EBB5-47F6-B987-207C802EED0F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc2:*:*:*:*:*:*",
"matchCriteriaId": "F6D87B50-2849-4F4D-A0F9-4F7EBA3C2647",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc3:*:*:*:*:*:*",
"matchCriteriaId": "3E580E25-F94C-4DA4-8718-15D5F1C3ADAF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc4:*:*:*:*:*:*",
"matchCriteriaId": "FD565CE0-D9E9-4FD9-8998-8AC55030FAB7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc5:*:*:*:*:*:*",
"matchCriteriaId": "093326B1-448C-4E3B-886D-CAC8B6813BFF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc6:*:*:*:*:*:*",
"matchCriteriaId": "F672C421-789D-4F21-B483-DA3EB251BA1D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc7:*:*:*:*:*:*",
"matchCriteriaId": "E13C190A-D7CE-4204-8CEF-B7317D3FFBF9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc8:*:*:*:*:*:*",
"matchCriteriaId": "15AEA3E2-A82F-4562-AFE6-B83A767B94E7",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:docker:docker:*:*:*:*:community:*:*:*",
"matchCriteriaId": "74332DAE-E215-47E8-AA37-0115F98B65C3",
"versionEndIncluding": "19.03.2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
"matchCriteriaId": "D100F7CE-FC64-4CC6-852A-6136D72DA419",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
"matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*",
"matchCriteriaId": "80F0FA5D-8D3B-4C0E-81E2-87998286AF33",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "064E7BDD-4EF0-4A0D-A38D-8C75BAFEDCEF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openshift_container_platform:4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "4C85A84D-A70F-4B02-9E5D-CD9660ABF048",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*",
"matchCriteriaId": "92BC9265-6959-4D37-BE5E-8C45E98992F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "831F0F47-3565-4763-B16F-C87B1FF2035E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*",
"matchCriteriaId": "0E3F09B5-569F-4C58-9FCA-3C0953D107B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "6897676D-53F9-45B3-B27F-7FF9A4C58D33",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*",
"matchCriteriaId": "E28F226A-CBC7-4A32-BE58-398FA5B42481",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B09ACF2D-D83F-4A86-8185-9569605D8EE1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*",
"matchCriteriaId": "AC10D919-57FD-4725-B8D2-39ECB476902F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*",
"matchCriteriaId": "A31C8344-3E02-4EB8-8BD8-4C84B7959624",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory."
},
{
"lang": "es",
"value": "runc versiones hasta 1.0.0-rc8, como es usado en Docker versiones hasta 19.03.2-ce y otros productos, permite omitir la restricci\u00f3n de AppArmor porque el archivo libcontainer/rootfs_linux.go comprueba incorrectamente los destinos de montaje y, por lo tanto, una imagen Docker maliciosa puede ser montada sobre un directorio /proc ."
}
],
"id": "CVE-2019-16884",
"lastModified": "2024-11-21T04:31:16.327",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-09-25T18:15:13.057",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3940"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4074"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/opencontainers/runc/issues/2128"
},
{
"source": "cve@mitre.org",
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00016.html"
},
{
"source": "cve@mitre.org",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00023.html"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD/"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR/"
},
{
"source": "cve@mitre.org",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202003-21"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220221-0004/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4297-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3940"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4074"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/opencontainers/runc/issues/2128"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00016.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00023.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202003-21"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220221-0004/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4297-1/"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-863"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
OPENSUSE-SU-2019:2434-1
Vulnerability from csaf_opensuse - Published: 2019-11-05 15:30 - Updated: 2019-11-05 15:30Summary
Security update for docker-runc
Notes
Title of the patch
Security update for docker-runc
Description of the patch
This update for docker-runc fixes the following issues:
- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames
openSUSE-2019-2434
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for docker-runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for docker-runc fixes the following issues:\n\n- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-2434",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_2434-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:2434-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/CCB4TJ7VRHVOBIOYGLDTKVCWSLRC5IPU/#CCB4TJ7VRHVOBIOYGLDTKVCWSLRC5IPU"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:2434-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/CCB4TJ7VRHVOBIOYGLDTKVCWSLRC5IPU/#CCB4TJ7VRHVOBIOYGLDTKVCWSLRC5IPU"
},
{
"category": "self",
"summary": "SUSE Bug 1152308",
"url": "https://bugzilla.suse.com/1152308"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16884 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
}
],
"title": "Security update for docker-runc",
"tracking": {
"current_release_date": "2019-11-05T15:30:38Z",
"generator": {
"date": "2019-11-05T15:30:38Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:2434-1",
"initial_release_date": "2019-11-05T15:30:38Z",
"revision_history": [
{
"date": "2019-11-05T15:30:38Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.9.1.x86_64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.9.1.x86_64",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.9.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.9.1.x86_64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16884"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16884",
"url": "https://www.suse.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "SUSE Bug 1152308 for CVE-2019-16884",
"url": "https://bugzilla.suse.com/1152308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-11-05T15:30:38Z",
"details": "moderate"
}
],
"title": "CVE-2019-16884"
}
]
}
OPENSUSE-SU-2020:0045-1
Vulnerability from csaf_opensuse - Published: 2020-01-13 17:16 - Updated: 2020-01-13 17:16Summary
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork
Notes
Title of the patch
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork
Description of the patch
This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:
Security issue fixed:
- CVE-2019-16884: Fixed incomplete patch for LSM bypass via malicious Docker image that mount over a /proc directory (bsc#1152308).
Bug fixes:
- Update to Docker 19.03.5-ce (bsc#1158590).
- Update to Docker 19.03.3-ce (bsc#1153367).
- Update to Docker 19.03.2-ce (bsc#1150397).
- Fixed default installation such that --userns-remap=default works properly (bsc#1143349).
- Fixed nginx blocked by apparmor (bsc#1122469).
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames
openSUSE-2020-45
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2019-16884: Fixed incomplete patch for LSM bypass via malicious Docker image that mount over a /proc directory (bsc#1152308). \n\nBug fixes:\n\n- Update to Docker 19.03.5-ce (bsc#1158590).\n- Update to Docker 19.03.3-ce (bsc#1153367).\n- Update to Docker 19.03.2-ce (bsc#1150397).\n- Fixed default installation such that --userns-remap=default works properly (bsc#1143349).\n- Fixed nginx blocked by apparmor (bsc#1122469).\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2020-45",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_0045-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2020:0045-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7SG42XULDNEP3QYZYRNN6W3EOIOR7RWW/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2020:0045-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7SG42XULDNEP3QYZYRNN6W3EOIOR7RWW/"
},
{
"category": "self",
"summary": "SUSE Bug 1122469",
"url": "https://bugzilla.suse.com/1122469"
},
{
"category": "self",
"summary": "SUSE Bug 1143349",
"url": "https://bugzilla.suse.com/1143349"
},
{
"category": "self",
"summary": "SUSE Bug 1150397",
"url": "https://bugzilla.suse.com/1150397"
},
{
"category": "self",
"summary": "SUSE Bug 1152308",
"url": "https://bugzilla.suse.com/1152308"
},
{
"category": "self",
"summary": "SUSE Bug 1153367",
"url": "https://bugzilla.suse.com/1153367"
},
{
"category": "self",
"summary": "SUSE Bug 1158590",
"url": "https://bugzilla.suse.com/1158590"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16884 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
}
],
"title": "Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork",
"tracking": {
"current_release_date": "2020-01-13T17:16:40Z",
"generator": {
"date": "2020-01-13T17:16:40Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2020:0045-1",
"initial_release_date": "2020-01-13T17:16:40Z",
"revision_history": [
{
"date": "2020-01-13T17:16:40Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "docker-bash-completion-19.03.5_ce-lp151.2.15.1.noarch",
"product": {
"name": "docker-bash-completion-19.03.5_ce-lp151.2.15.1.noarch",
"product_id": "docker-bash-completion-19.03.5_ce-lp151.2.15.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-zsh-completion-19.03.5_ce-lp151.2.15.1.noarch",
"product": {
"name": "docker-zsh-completion-19.03.5_ce-lp151.2.15.1.noarch",
"product_id": "docker-zsh-completion-19.03.5_ce-lp151.2.15.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-lp151.2.9.1.x86_64",
"product": {
"name": "containerd-1.2.10-lp151.2.9.1.x86_64",
"product_id": "containerd-1.2.10-lp151.2.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-lp151.2.9.1.x86_64",
"product": {
"name": "containerd-ctr-1.2.10-lp151.2.9.1.x86_64",
"product_id": "containerd-ctr-1.2.10-lp151.2.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-lp151.2.15.1.x86_64",
"product": {
"name": "docker-19.03.5_ce-lp151.2.15.1.x86_64",
"product_id": "docker-19.03.5_ce-lp151.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1.x86_64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1.x86_64",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-lp151.2.15.1.x86_64",
"product": {
"name": "docker-test-19.03.5_ce-lp151.2.15.1.x86_64",
"product_id": "docker-test-19.03.5_ce-lp151.2.15.1.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-lp151.2.9.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:containerd-1.2.10-lp151.2.9.1.x86_64"
},
"product_reference": "containerd-1.2.10-lp151.2.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-ctr-1.2.10-lp151.2.9.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:containerd-ctr-1.2.10-lp151.2.9.1.x86_64"
},
"product_reference": "containerd-ctr-1.2.10-lp151.2.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-lp151.2.15.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:docker-19.03.5_ce-lp151.2.15.1.x86_64"
},
"product_reference": "docker-19.03.5_ce-lp151.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-19.03.5_ce-lp151.2.15.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:docker-bash-completion-19.03.5_ce-lp151.2.15.1.noarch"
},
"product_reference": "docker-bash-completion-19.03.5_ce-lp151.2.15.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1.x86_64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-test-19.03.5_ce-lp151.2.15.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:docker-test-19.03.5_ce-lp151.2.15.1.x86_64"
},
"product_reference": "docker-test-19.03.5_ce-lp151.2.15.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-zsh-completion-19.03.5_ce-lp151.2.15.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:docker-zsh-completion-19.03.5_ce-lp151.2.15.1.noarch"
},
"product_reference": "docker-zsh-completion-19.03.5_ce-lp151.2.15.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64"
},
"product_reference": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16884"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:containerd-1.2.10-lp151.2.9.1.x86_64",
"openSUSE Leap 15.1:containerd-ctr-1.2.10-lp151.2.9.1.x86_64",
"openSUSE Leap 15.1:docker-19.03.5_ce-lp151.2.15.1.x86_64",
"openSUSE Leap 15.1:docker-bash-completion-19.03.5_ce-lp151.2.15.1.noarch",
"openSUSE Leap 15.1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64",
"openSUSE Leap 15.1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1.x86_64",
"openSUSE Leap 15.1:docker-test-19.03.5_ce-lp151.2.15.1.x86_64",
"openSUSE Leap 15.1:docker-zsh-completion-19.03.5_ce-lp151.2.15.1.noarch",
"openSUSE Leap 15.1:golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16884",
"url": "https://www.suse.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "SUSE Bug 1152308 for CVE-2019-16884",
"url": "https://bugzilla.suse.com/1152308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:containerd-1.2.10-lp151.2.9.1.x86_64",
"openSUSE Leap 15.1:containerd-ctr-1.2.10-lp151.2.9.1.x86_64",
"openSUSE Leap 15.1:docker-19.03.5_ce-lp151.2.15.1.x86_64",
"openSUSE Leap 15.1:docker-bash-completion-19.03.5_ce-lp151.2.15.1.noarch",
"openSUSE Leap 15.1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64",
"openSUSE Leap 15.1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1.x86_64",
"openSUSE Leap 15.1:docker-test-19.03.5_ce-lp151.2.15.1.x86_64",
"openSUSE Leap 15.1:docker-zsh-completion-19.03.5_ce-lp151.2.15.1.noarch",
"openSUSE Leap 15.1:golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:containerd-1.2.10-lp151.2.9.1.x86_64",
"openSUSE Leap 15.1:containerd-ctr-1.2.10-lp151.2.9.1.x86_64",
"openSUSE Leap 15.1:docker-19.03.5_ce-lp151.2.15.1.x86_64",
"openSUSE Leap 15.1:docker-bash-completion-19.03.5_ce-lp151.2.15.1.noarch",
"openSUSE Leap 15.1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64",
"openSUSE Leap 15.1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1.x86_64",
"openSUSE Leap 15.1:docker-test-19.03.5_ce-lp151.2.15.1.x86_64",
"openSUSE Leap 15.1:docker-zsh-completion-19.03.5_ce-lp151.2.15.1.noarch",
"openSUSE Leap 15.1:golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-01-13T17:16:40Z",
"details": "moderate"
}
],
"title": "CVE-2019-16884"
}
]
}
OPENSUSE-SU-2019:2418-1
Vulnerability from csaf_opensuse - Published: 2019-10-31 09:26 - Updated: 2019-10-31 09:26Summary
Security update for docker-runc
Notes
Title of the patch
Security update for docker-runc
Description of the patch
This update for docker-runc fixes the following issues:
- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames
openSUSE-2019-2418
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for docker-runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for docker-runc fixes the following issues:\n\n- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)\n\nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-2418",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_2418-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:2418-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XQUO7JWM2QDHYISZWKF27GHWQFEZNITO/#XQUO7JWM2QDHYISZWKF27GHWQFEZNITO"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:2418-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XQUO7JWM2QDHYISZWKF27GHWQFEZNITO/#XQUO7JWM2QDHYISZWKF27GHWQFEZNITO"
},
{
"category": "self",
"summary": "SUSE Bug 1152308",
"url": "https://bugzilla.suse.com/1152308"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16884 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
}
],
"title": "Security update for docker-runc",
"tracking": {
"current_release_date": "2019-10-31T09:26:56Z",
"generator": {
"date": "2019-10-31T09:26:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:2418-1",
"initial_release_date": "2019-10-31T09:26:56Z",
"revision_history": [
{
"date": "2019-10-31T09:26:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp150.5.28.1.x86_64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp150.5.28.1.x86_64",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp150.5.28.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.0",
"product": {
"name": "openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp150.5.28.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp150.5.28.1.x86_64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp150.5.28.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16884"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.0:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp150.5.28.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16884",
"url": "https://www.suse.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "SUSE Bug 1152308 for CVE-2019-16884",
"url": "https://bugzilla.suse.com/1152308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.0:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp150.5.28.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.0:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp150.5.28.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-31T09:26:56Z",
"details": "moderate"
}
],
"title": "CVE-2019-16884"
}
]
}
OPENSUSE-SU-2024:11358-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
runc-1.0.2-1.2 on GA media
Notes
Title of the patch
runc-1.0.2-1.2 on GA media
Description of the patch
These are all security issues fixed in the runc-1.0.2-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11358
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "runc-1.0.2-1.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the runc-1.0.2-1.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11358",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11358-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-9962 page",
"url": "https://www.suse.com/security/cve/CVE-2016-9962/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16873 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16874 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16875 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16884 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-19921 page",
"url": "https://www.suse.com/security/cve/CVE-2019-19921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-5736 page",
"url": "https://www.suse.com/security/cve/CVE-2019-5736/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-30465 page",
"url": "https://www.suse.com/security/cve/CVE-2021-30465/"
}
],
"title": "runc-1.0.2-1.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11358-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.0.2-1.2.aarch64",
"product": {
"name": "runc-1.0.2-1.2.aarch64",
"product_id": "runc-1.0.2-1.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.0.2-1.2.ppc64le",
"product": {
"name": "runc-1.0.2-1.2.ppc64le",
"product_id": "runc-1.0.2-1.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.0.2-1.2.s390x",
"product": {
"name": "runc-1.0.2-1.2.s390x",
"product_id": "runc-1.0.2-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.0.2-1.2.x86_64",
"product": {
"name": "runc-1.0.2-1.2.x86_64",
"product_id": "runc-1.0.2-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.2-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64"
},
"product_reference": "runc-1.0.2-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.2-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le"
},
"product_reference": "runc-1.0.2-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.2-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:runc-1.0.2-1.2.s390x"
},
"product_reference": "runc-1.0.2-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.2-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
},
"product_reference": "runc-1.0.2-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-9962",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-9962"
}
],
"notes": [
{
"category": "general",
"text": "RunC allowed additional container processes via \u0027runc exec\u0027 to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain access to file-descriptors of these new processes during the initialization and can lead to container escapes or modification of runC state before the process is fully placed inside the container.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-9962",
"url": "https://www.suse.com/security/cve/CVE-2016-9962"
},
{
"category": "external",
"summary": "SUSE Bug 1012568 for CVE-2016-9962",
"url": "https://bugzilla.suse.com/1012568"
},
{
"category": "external",
"summary": "SUSE Bug 1173425 for CVE-2016-9962",
"url": "https://bugzilla.suse.com/1173425"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-9962"
},
{
"cve": "CVE-2018-16873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16873"
}
],
"notes": [
{
"category": "general",
"text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16873",
"url": "https://www.suse.com/security/cve/CVE-2018-16873"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-16873"
},
{
"cve": "CVE-2018-16874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16874"
}
],
"notes": [
{
"category": "general",
"text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16874",
"url": "https://www.suse.com/security/cve/CVE-2018-16874"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-16874"
},
{
"cve": "CVE-2018-16875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16875"
}
],
"notes": [
{
"category": "general",
"text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16875",
"url": "https://www.suse.com/security/cve/CVE-2018-16875"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-16875"
},
{
"cve": "CVE-2019-16884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16884"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16884",
"url": "https://www.suse.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "SUSE Bug 1152308 for CVE-2019-16884",
"url": "https://bugzilla.suse.com/1152308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-16884"
},
{
"cve": "CVE-2019-19921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-19921"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vulnerability does not affect Docker due to an implementation detail that happens to block the attack.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-19921",
"url": "https://www.suse.com/security/cve/CVE-2019-19921"
},
{
"category": "external",
"summary": "SUSE Bug 1160452 for CVE-2019-19921",
"url": "https://bugzilla.suse.com/1160452"
},
{
"category": "external",
"summary": "SUSE Bug 1208962 for CVE-2019-19921",
"url": "https://bugzilla.suse.com/1208962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-19921"
},
{
"cve": "CVE-2019-5736",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-5736"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image, or (2) an existing container, to which the attacker previously had write access, that can be attached with docker exec. This occurs because of file-descriptor mishandling, related to /proc/self/exe.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-5736",
"url": "https://www.suse.com/security/cve/CVE-2019-5736"
},
{
"category": "external",
"summary": "SUSE Bug 1121967 for CVE-2019-5736",
"url": "https://bugzilla.suse.com/1121967"
},
{
"category": "external",
"summary": "SUSE Bug 1122185 for CVE-2019-5736",
"url": "https://bugzilla.suse.com/1122185"
},
{
"category": "external",
"summary": "SUSE Bug 1173421 for CVE-2019-5736",
"url": "https://bugzilla.suse.com/1173421"
},
{
"category": "external",
"summary": "SUSE Bug 1218894 for CVE-2019-5736",
"url": "https://bugzilla.suse.com/1218894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-5736"
},
{
"cve": "CVE-2021-30465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-30465"
}
],
"notes": [
{
"category": "general",
"text": "runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-30465",
"url": "https://www.suse.com/security/cve/CVE-2021-30465"
},
{
"category": "external",
"summary": "SUSE Bug 1185405 for CVE-2021-30465",
"url": "https://bugzilla.suse.com/1185405"
},
{
"category": "external",
"summary": "SUSE Bug 1189161 for CVE-2021-30465",
"url": "https://bugzilla.suse.com/1189161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:runc-1.0.2-1.2.aarch64",
"openSUSE Tumbleweed:runc-1.0.2-1.2.ppc64le",
"openSUSE Tumbleweed:runc-1.0.2-1.2.s390x",
"openSUSE Tumbleweed:runc-1.0.2-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-30465"
}
]
}
WID-SEC-W-2025-2547
Vulnerability from csaf_certbund - Published: 2020-01-08 23:00 - Updated: 2025-11-11 23:00Summary
docker: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Docker ist eine Open-Source-Software, die dazu verwendet werden kann, Anwendungen mithilfe von Betriebssystemvirtualisierung in Containern zu isolieren.
Angriff
Ein lokaler Angreifer kann eine Schwachstelle in docker ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
Betroffene Betriebssysteme
- Linux
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Docker ist eine Open-Source-Software, die dazu verwendet werden kann, Anwendungen mithilfe von Betriebssystemvirtualisierung in Containern zu isolieren.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann eine Schwachstelle in docker ausnutzen, um Sicherheitsvorkehrungen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-2547 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2020/wid-sec-w-2025-2547.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-2547 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2547"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:0035-1 vom 2020-01-08",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20200035-1/"
},
{
"category": "external",
"summary": "Oracle Linux Errata ELSA-2019-4269 vom 2020-01-08",
"url": "https://linux.oracle.com/errata/ELSA-2019-4269.html"
},
{
"category": "external",
"summary": "SUSE Linux security updates CVE-2019-16884 Stand 2020-01-08",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
},
{
"category": "external",
"summary": "Meldung auf GitHub vom 2020-01-08",
"url": "https://github.com/opencontainers/runc/issues/2128"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2020:0065-1 vom 2020-01-10",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20200065-1.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2021:1458-1 vom 2021-04-30",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-April/008717.html"
},
{
"category": "external",
"summary": "Amazon Linux 2 Security Advisory",
"url": "https://alas.aws.amazon.com/AL2/ALASDOCKER-2021-009.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2021-1556 vom 2022-01-11",
"url": "https://alas.aws.amazon.com/ALAS-2021-1556.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:20957 vom 2025-11-11",
"url": "https://access.redhat.com/errata/RHSA-2025:20957"
}
],
"source_lang": "en-US",
"title": "docker: Schwachstelle erm\u00f6glicht Umgehen von Sicherheitsvorkehrungen",
"tracking": {
"current_release_date": "2025-11-11T23:00:00.000+00:00",
"generator": {
"date": "2025-11-12T06:32:21.722+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-2547",
"initial_release_date": "2020-01-08T23:00:00.000+00:00",
"revision_history": [
{
"date": "2020-01-08T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2020-01-12T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2020-03-15T23:00:00.000+00:00",
"number": "3",
"summary": "Referenz(en) aufgenommen: GLSA/202003-21"
},
{
"date": "2021-05-02T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2021-12-08T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2022-01-11T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2025-11-11T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "7"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c19.03.2-ce",
"product": {
"name": "Open Source docker \u003c19.03.2-ce",
"product_id": "T015642"
}
},
{
"category": "product_version",
"name": "19.03.2-ce",
"product": {
"name": "Open Source docker 19.03.2-ce",
"product_id": "T015642-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:docker:docker:19.03.2-ce"
}
}
}
],
"category": "product_name",
"name": "docker"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T015642",
"T004914"
]
},
"release_date": "2020-01-08T23:00:00.000+00:00",
"title": "CVE-2019-16884"
}
]
}
WID-SEC-W-2025-2490
Vulnerability from csaf_certbund - Published: 2019-11-20 23:00 - Updated: 2025-12-07 23:00Summary
Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Die Red Hat OpenShift Container Platform bietet Unternehmen die Möglichkeit der Steuerung ihrer Kubernetes Umgebungen.
Angriff
Ein lokaler Angreifer kann eine Schwachstelle in der Red Hat OpenShift Container Platform ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
Betroffene Betriebssysteme
- Linux
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Die Red Hat OpenShift Container Platform bietet Unternehmen die M\u00f6glichkeit der Steuerung ihrer Kubernetes Umgebungen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann eine Schwachstelle in der Red Hat OpenShift Container Platform ausnutzen, um Sicherheitsvorkehrungen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-2490 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2019/wid-sec-w-2025-2490.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-2490 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2490"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2019:3940 vom 2019-11-20",
"url": "https://access.redhat.com/errata/RHSA-2019:3940"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2019:4074 vom 2019-12-03",
"url": "https://access.redhat.com/errata/RHSA-2019:4074"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2019:4269 vom 2019-12-17",
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"category": "external",
"summary": "Meldung auf GitHub vom 2020-01-08",
"url": "https://github.com/opencontainers/runc/issues/2128"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2020:1234 vom 2020-04-01",
"url": "https://access.redhat.com/errata/RHSA-2020:1234"
},
{
"category": "external",
"summary": "Amazon Linux 2 Security Advisory",
"url": "https://alas.aws.amazon.com/AL2/ALASDOCKER-2021-009.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7851-1 vom 2025-11-05",
"url": "https://ubuntu.com/security/notices/USN-7851-1"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22275 vom 2025-12-05",
"url": "https://access.redhat.com/errata/RHSA-2025:22275"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenShift Container Platform: Schwachstelle erm\u00f6glicht Umgehen von Sicherheitsvorkehrungen",
"tracking": {
"current_release_date": "2025-12-07T23:00:00.000+00:00",
"generator": {
"date": "2025-12-08T07:50:14.825+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2025-2490",
"initial_release_date": "2019-11-20T23:00:00.000+00:00",
"revision_history": [
{
"date": "2019-11-20T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2019-12-03T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2019-12-16T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2020-01-08T23:00:00.000+00:00",
"number": "4",
"summary": "Exploit aufgenommen"
},
{
"date": "2020-03-15T23:00:00.000+00:00",
"number": "5",
"summary": "Referenz(en) aufgenommen: GLSA/202003-21"
},
{
"date": "2020-03-31T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2021-12-08T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2025-11-05T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-12-07T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "9"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "4.1",
"product": {
"name": "Red Hat OpenShift Container Platform 4.1",
"product_id": "476813",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_container_platform:4.1"
}
}
}
],
"category": "product_name",
"name": "OpenShift Container Platform"
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"product_status": {
"known_affected": [
"67646",
"T000126",
"398363",
"476813"
]
},
"release_date": "2019-11-20T23:00:00.000+00:00",
"title": "CVE-2019-16884"
}
]
}
GSD-2019-16884
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2019-16884",
"description": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"id": "GSD-2019-16884",
"references": [
"https://www.suse.com/security/cve/CVE-2019-16884.html",
"https://access.redhat.com/errata/RHSA-2020:1234",
"https://access.redhat.com/errata/RHBA-2020:1232",
"https://access.redhat.com/errata/RHSA-2019:4269",
"https://access.redhat.com/errata/RHSA-2019:4074",
"https://access.redhat.com/errata/RHSA-2019:3940",
"https://ubuntu.com/security/CVE-2019-16884",
"https://advisories.mageia.org/CVE-2019-16884.html",
"https://alas.aws.amazon.com/cve/html/CVE-2019-16884.html",
"https://linux.oracle.com/cve/CVE-2019-16884.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2019-16884"
],
"details": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"id": "GSD-2019-16884",
"modified": "2023-12-13T01:23:40.505916Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-16884",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/opencontainers/runc/issues/2128",
"refsource": "MISC",
"url": "https://github.com/opencontainers/runc/issues/2128"
},
{
"name": "FEDORA-2019-bd4843561c",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR/"
},
{
"name": "FEDORA-2019-3fc86a518b",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD/"
},
{
"name": "FEDORA-2019-96946c39dd",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF/"
},
{
"name": "openSUSE-SU-2019:2418",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html"
},
{
"name": "openSUSE-SU-2019:2434",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html"
},
{
"name": "RHSA-2019:3940",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3940"
},
{
"name": "RHSA-2019:4074",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4074"
},
{
"name": "RHSA-2019:4269",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"name": "openSUSE-SU-2020:0045",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html"
},
{
"name": "GLSA-202003-21",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202003-21"
},
{
"name": "USN-4297-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4297-1/"
},
{
"name": "https://security.netapp.com/advisory/ntap-20220221-0004/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20220221-0004/"
},
{
"name": "[debian-lts-announce] 20230218 [SECURITY] [DLA 3322-1] golang-github-opencontainers-selinux security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00016.html"
},
{
"name": "[debian-lts-announce] 20230327 [SECURITY] [DLA 3369-1] runc security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00023.html"
}
]
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "\u003c=v1.0.0-rc8",
"affected_versions": "All versions up to 1.0.0-rc8",
"cvss_v2": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"cwe_ids": [
"CWE-1035",
"CWE-863",
"CWE-937"
],
"date": "2022-02-26",
"description": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"fixed_versions": [
"v1.0.0-rc9"
],
"identifier": "CVE-2019-16884",
"identifiers": [
"GHSA-fgv8-vj5c-2ppq",
"CVE-2019-16884"
],
"not_impacted": "All versions after 1.0.0-rc8",
"package_slug": "go/github.com/opencontainers/runc",
"pubdate": "2022-02-22",
"solution": "Upgrade to version 1.0.0-rc9 or above. *Note*: 1.0.0-rc9 may be an unstable version. Use caution.",
"title": "Incorrect Authorization",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2019-16884",
"https://github.com/opencontainers/runc/issues/2128",
"https://github.com/opencontainers/runc/pull/2129",
"https://github.com/crosbymichael/runc/commit/78dce1cf1ec36bbe7fe6767bdb81f7cbf6d34d70",
"https://access.redhat.com/errata/RHSA-2019:3940",
"https://access.redhat.com/errata/RHSA-2019:4074",
"https://access.redhat.com/errata/RHSA-2019:4269",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF/",
"https://security.gentoo.org/glsa/202003-21",
"https://security.netapp.com/advisory/ntap-20220221-0004/",
"https://usn.ubuntu.com/4297-1/",
"http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html",
"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html",
"https://github.com/advisories/GHSA-fgv8-vj5c-2ppq"
],
"uuid": "3cad5c9b-a0f0-49b5-8508-17d1e97b7932",
"versions": [
{
"commit": {
"sha": "9f92a0d5483616c5dc109c64cd9c45989967dee9",
"tags": [
"v1.0.0-rc8"
],
"timestamp": "20190424214825"
},
"number": "v1.0.0-rc8"
},
{
"commit": {
"sha": "592d95337d1d3520995e216067817d6054af75e8",
"tags": [
"v1.0.0-rc9"
],
"timestamp": "20190930163609"
},
"number": "v1.0.0-rc9"
}
]
},
{
"_git_import_path": "go/github.com/opencontainers/runc/libcontainer",
"affected_range": "\u003c=v1.0.0-rc8",
"affected_versions": "All versions up to 1.0.0-rc8",
"cvss_v2": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"cwe_ids": [
"CWE-1035",
"CWE-863",
"CWE-937"
],
"date": "2019-10-08",
"description": "runc through allows AppArmor restriction bypass because `libcontainer/rootfs_linux.go` incorrectly checks mount targets, and thus a malicious Docker image can mount over a `/proc` directory.",
"fixed_versions": [
"v1.0.0-rc9"
],
"identifier": "CVE-2019-16884",
"identifiers": [
"CVE-2019-16884"
],
"not_impacted": "All versions starting from 1.0.0-rc9",
"package_slug": "go/github.com/opencontainers/runc/libcontainer",
"pubdate": "2019-09-25",
"solution": "Upgrade to version 1.0.0-rc9 or above.",
"title": "Incorrect Authorization",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2019-16884",
"https://github.com/opencontainers/runc/issues/2128"
],
"uuid": "64a3398f-11f2-4a6c-90d9-34ad0d18c5c3",
"versions": [
{
"commit": {
"sha": "9f92a0d5483616c5dc109c64cd9c45989967dee9",
"tags": [
"v1.0.0-rc8"
],
"timestamp": "20190424234825"
},
"number": "v1.0.0-rc8"
},
{
"commit": {
"sha": "592d95337d1d3520995e216067817d6054af75e8",
"tags": [
"v1.0.0-rc9"
],
"timestamp": "20190930183609"
},
"number": "v1.0.0-rc9"
}
]
},
{
"affected_range": "\u003cv1.3.1-0.20190929122143-5215b1806f52",
"affected_versions": "All versions before 1.3.1-0.20190929122143-5215b1806f52",
"cvss_v2": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"cwe_ids": [
"CWE-1035",
"CWE-863",
"CWE-937"
],
"date": "2023-02-13",
"description": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"fixed_versions": [
"v1.3.1-0.20190929122143-5215b1806f52"
],
"identifier": "CVE-2019-16884",
"identifiers": [
"GHSA-fgv8-vj5c-2ppq",
"CVE-2019-16884"
],
"not_impacted": "All versions starting from 1.3.1-0.20190929122143-5215b1806f52",
"package_slug": "go/github.com/opencontainers/selinux",
"pubdate": "2022-02-22",
"solution": "Upgrade to version 1.3.1-0.20190929122143-5215b1806f52 or above.",
"title": "Incorrect Authorization",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2019-16884",
"https://github.com/opencontainers/runc/issues/2128",
"https://github.com/opencontainers/runc/pull/2129",
"https://github.com/crosbymichael/runc/commit/78dce1cf1ec36bbe7fe6767bdb81f7cbf6d34d70",
"https://access.redhat.com/errata/RHSA-2019:3940",
"https://access.redhat.com/errata/RHSA-2019:4074",
"https://access.redhat.com/errata/RHSA-2019:4269",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR/",
"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF/",
"https://security.gentoo.org/glsa/202003-21",
"https://security.netapp.com/advisory/ntap-20220221-0004/",
"https://usn.ubuntu.com/4297-1/",
"http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html",
"http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html",
"https://github.com/opencontainers/runc/pull/2130",
"https://github.com/opencontainers/runc/commit/cad42f6e0932db0ce08c3a3d9e89e6063ec283e4",
"https://github.com/opencontainers/selinux/commit/03b517dc4fd57245b1cf506e8ba7b817b6d309da",
"https://pkg.go.dev/vuln/GO-2021-0085",
"https://github.com/advisories/GHSA-fgv8-vj5c-2ppq"
],
"uuid": "7e64e78a-5052-4247-9037-b985924dfd81",
"versions": []
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:linuxfoundation:runc:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "0.1.1",
"versionStartIncluding": "0.0.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:linuxfoundation:runc:1.0.0:rc8:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:docker:docker:*:*:*:*:community:*:*:*",
"cpe_name": [],
"versionEndIncluding": "19.03.2",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openshift_container_platform:4.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-16884"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-863"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/opencontainers/runc/issues/2128",
"refsource": "MISC",
"tags": [
"Exploit",
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/opencontainers/runc/issues/2128"
},
{
"name": "FEDORA-2019-bd4843561c",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR/"
},
{
"name": "FEDORA-2019-3fc86a518b",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD/"
},
{
"name": "FEDORA-2019-96946c39dd",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF/"
},
{
"name": "openSUSE-SU-2019:2418",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html"
},
{
"name": "openSUSE-SU-2019:2434",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html"
},
{
"name": "RHSA-2019:3940",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3940"
},
{
"name": "RHSA-2019:4074",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4074"
},
{
"name": "RHSA-2019:4269",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"name": "openSUSE-SU-2020:0045",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html"
},
{
"name": "GLSA-202003-21",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202003-21"
},
{
"name": "USN-4297-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/4297-1/"
},
{
"name": "https://security.netapp.com/advisory/ntap-20220221-0004/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20220221-0004/"
},
{
"name": "[debian-lts-announce] 20230218 [SECURITY] [DLA 3322-1] golang-github-opencontainers-selinux security update",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00016.html"
},
{
"name": "[debian-lts-announce] 20230327 [SECURITY] [DLA 3369-1] runc security update",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00023.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2023-03-27T18:15Z",
"publishedDate": "2019-09-25T18:15Z"
}
}
}
RHBA-2020:1232
Vulnerability from csaf_redhat - Published: 2020-04-01 00:26 - Updated: 2025-11-21 17:22Summary
Red Hat Bug Fix Advisory: runc bug fix update
Notes
Topic
Updated runc package that fixes several bugs is now available for Red Hat Enterprise Linux 7 Extras.
Details
The runc tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides container runtime.
Users of runc are advised to upgrade to this updated package, which fixes several bugs.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated runc package that fixes several bugs is now available for Red Hat Enterprise Linux 7 Extras.",
"title": "Topic"
},
{
"category": "general",
"text": "The runc tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides container runtime.\n\nUsers of runc are advised to upgrade to this updated package, which fixes several bugs.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2020:1232",
"url": "https://access.redhat.com/errata/RHBA-2020:1232"
},
{
"category": "external",
"summary": "1791287",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791287"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhba-2020_1232.json"
}
],
"title": "Red Hat Bug Fix Advisory: runc bug fix update",
"tracking": {
"current_release_date": "2025-11-21T17:22:27+00:00",
"generator": {
"date": "2025-11-21T17:22:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHBA-2020:1232",
"initial_release_date": "2020-04-01T00:26:23+00:00",
"revision_history": [
{
"date": "2020-04-01T00:26:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-04-01T00:26:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:22:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux 7 Extras",
"product": {
"name": "Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_other:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux 7 Extras",
"product": {
"name": "Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_other:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Extras"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-0:1.0.0-67.rc10.el7_8.x86_64",
"product": {
"name": "runc-0:1.0.0-67.rc10.el7_8.x86_64",
"product_id": "runc-0:1.0.0-67.rc10.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-67.rc10.el7_8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64",
"product": {
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64",
"product_id": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.0.0-67.rc10.el7_8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-0:1.0.0-67.rc10.el7_8.src",
"product": {
"name": "runc-0:1.0.0-67.rc10.el7_8.src",
"product_id": "runc-0:1.0.0-67.rc10.el7_8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-67.rc10.el7_8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"product": {
"name": "runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"product_id": "runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-67.rc10.el7_8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"product": {
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"product_id": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.0.0-67.rc10.el7_8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-0:1.0.0-67.rc10.el7_8.s390x",
"product": {
"name": "runc-0:1.0.0-67.rc10.el7_8.s390x",
"product_id": "runc-0:1.0.0-67.rc10.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-67.rc10.el7_8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"product": {
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"product_id": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.0.0-67.rc10.el7_8?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-67.rc10.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.ppc64le"
},
"product_reference": "runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-67.rc10.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.s390x"
},
"product_reference": "runc-0:1.0.0-67.rc10.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-67.rc10.el7_8.src as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.src"
},
"product_reference": "runc-0:1.0.0-67.rc10.el7_8.src",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-67.rc10.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.x86_64"
},
"product_reference": "runc-0:1.0.0-67.rc10.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le"
},
"product_reference": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x"
},
"product_reference": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64"
},
"product_reference": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-67.rc10.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.ppc64le"
},
"product_reference": "runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-67.rc10.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.s390x"
},
"product_reference": "runc-0:1.0.0-67.rc10.el7_8.s390x",
"relates_to_product_reference": "7Workstation-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-67.rc10.el7_8.src as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.src"
},
"product_reference": "runc-0:1.0.0-67.rc10.el7_8.src",
"relates_to_product_reference": "7Workstation-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-67.rc10.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.x86_64"
},
"product_reference": "runc-0:1.0.0-67.rc10.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le"
},
"product_reference": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"relates_to_product_reference": "7Workstation-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x"
},
"product_reference": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"relates_to_product_reference": "7Workstation-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64"
},
"product_reference": "runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64",
"relates_to_product_reference": "7Workstation-EXTRAS-7.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"cwe": {
"id": "CWE-41",
"name": "Improper Resolution of Path Equivalence"
},
"discovery_date": "2019-09-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1757214"
}
],
"notes": [
{
"category": "description",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The AppArmor security module is not supported by Red Hat, on the other hand the flaw also affects SELinux based distributions like Red Hat Enterprise Linux.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.s390x",
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.src",
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.x86_64",
"7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.s390x",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.src",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.x86_64",
"7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "RHBZ#1757214",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757214"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-16884",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16884"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884"
}
],
"release_date": "2019-09-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-01T00:26:23+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.s390x",
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.src",
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.x86_64",
"7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.s390x",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.src",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.x86_64",
"7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2020:1232"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.s390x",
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.src",
"7Server-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.x86_64",
"7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"7Server-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.s390x",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.src",
"7Workstation-EXTRAS-7.8:runc-0:1.0.0-67.rc10.el7_8.x86_64",
"7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.ppc64le",
"7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.s390x",
"7Workstation-EXTRAS-7.8:runc-debuginfo-0:1.0.0-67.rc10.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc"
}
]
}
RHSA-2020:1234
Vulnerability from csaf_redhat - Published: 2020-04-01 00:26 - Updated: 2025-11-21 18:13Summary
Red Hat Security Advisory: docker security and bug fix update
Notes
Topic
An update for docker is now available for Red Hat Enterprise Linux 7 Extras.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that runs virtually anywhere.
Security Fix(es):
* runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc (CVE-2019-16884)
* proglottis/gpgme: Use-after-free in GPGME bindings during container image pull (CVE-2020-8945)
* containers/image: Container images read entire image manifest into memory (CVE-2020-1702)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Whitelist statx(2) in docker (BZ#1784228)
* Upgrading docker resulting into increase Systemd logs (BZ#1791870)
* docker should be linked against gpgme-pthread (BZ#1792243)
* docker cannot be updated to 108 on rhos13 as a container fails to start with "pivot_root invalid argument" error. (BZ#1795376)
* OVS pods are unable to stop when running under docker version 1.13.1-108 (BZ#1796451)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for docker is now available for Red Hat Enterprise Linux 7 Extras.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that runs virtually anywhere. \n\nSecurity Fix(es):\n\n* runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc (CVE-2019-16884)\n\n* proglottis/gpgme: Use-after-free in GPGME bindings during container image pull (CVE-2020-8945)\n\n* containers/image: Container images read entire image manifest into memory (CVE-2020-1702)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* Whitelist statx(2) in docker (BZ#1784228)\n\n* Upgrading docker resulting into increase Systemd logs (BZ#1791870)\n\n* docker should be linked against gpgme-pthread (BZ#1792243)\n\n* docker cannot be updated to 108 on rhos13 as a container fails to start with \"pivot_root invalid argument\" error. (BZ#1795376)\n\n* OVS pods are unable to stop when running under docker version 1.13.1-108 (BZ#1796451)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:1234",
"url": "https://access.redhat.com/errata/RHSA-2020:1234"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1757214",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757214"
},
{
"category": "external",
"summary": "1784228",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1784228"
},
{
"category": "external",
"summary": "1792796",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1792796"
},
{
"category": "external",
"summary": "1795376",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1795376"
},
{
"category": "external",
"summary": "1795838",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1795838"
},
{
"category": "external",
"summary": "1796451",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1796451"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1234.json"
}
],
"title": "Red Hat Security Advisory: docker security and bug fix update",
"tracking": {
"current_release_date": "2025-11-21T18:13:16+00:00",
"generator": {
"date": "2025-11-21T18:13:16+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:1234",
"initial_release_date": "2020-04-01T00:26:32+00:00",
"revision_history": [
{
"date": "2020-04-01T00:26:32+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-04-01T00:26:32+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:13:16+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux 7 Extras",
"product": {
"name": "Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_other:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Extras"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product": {
"name": "docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_id": "docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker@1.13.1-161.git64e9980.el7_8?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product": {
"name": "docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_id": "docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-client@1.13.1-161.git64e9980.el7_8?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product": {
"name": "docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_id": "docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-common@1.13.1-161.git64e9980.el7_8?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product": {
"name": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_id": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-logrotate@1.13.1-161.git64e9980.el7_8?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product": {
"name": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_id": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-lvm-plugin@1.13.1-161.git64e9980.el7_8?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product": {
"name": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_id": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-novolume-plugin@1.13.1-161.git64e9980.el7_8?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product": {
"name": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_id": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-rhel-push-plugin@1.13.1-161.git64e9980.el7_8?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product": {
"name": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_id": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-v1.10-migrator@1.13.1-161.git64e9980.el7_8?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product": {
"name": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_id": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-debuginfo@1.13.1-161.git64e9980.el7_8?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"product": {
"name": "docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_id": "docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker@1.13.1-161.git64e9980.el7_8?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"product": {
"name": "docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_id": "docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-client@1.13.1-161.git64e9980.el7_8?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"product": {
"name": "docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_id": "docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-common@1.13.1-161.git64e9980.el7_8?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"product": {
"name": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_id": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-logrotate@1.13.1-161.git64e9980.el7_8?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"product": {
"name": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_id": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-lvm-plugin@1.13.1-161.git64e9980.el7_8?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"product": {
"name": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_id": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-novolume-plugin@1.13.1-161.git64e9980.el7_8?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"product": {
"name": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_id": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-rhel-push-plugin@1.13.1-161.git64e9980.el7_8?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"product": {
"name": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_id": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-v1.10-migrator@1.13.1-161.git64e9980.el7_8?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"product": {
"name": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_id": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-debuginfo@1.13.1-161.git64e9980.el7_8?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product": {
"name": "docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_id": "docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker@1.13.1-161.git64e9980.el7_8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product": {
"name": "docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_id": "docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-client@1.13.1-161.git64e9980.el7_8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product": {
"name": "docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_id": "docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-common@1.13.1-161.git64e9980.el7_8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product": {
"name": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_id": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-logrotate@1.13.1-161.git64e9980.el7_8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product": {
"name": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_id": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-lvm-plugin@1.13.1-161.git64e9980.el7_8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product": {
"name": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_id": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-novolume-plugin@1.13.1-161.git64e9980.el7_8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product": {
"name": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_id": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-rhel-push-plugin@1.13.1-161.git64e9980.el7_8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product": {
"name": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_id": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-v1.10-migrator@1.13.1-161.git64e9980.el7_8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product": {
"name": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_id": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker-debuginfo@1.13.1-161.git64e9980.el7_8?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-2:1.13.1-161.git64e9980.el7_8.src",
"product": {
"name": "docker-2:1.13.1-161.git64e9980.el7_8.src",
"product_id": "docker-2:1.13.1-161.git64e9980.el7_8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/docker@1.13.1-161.git64e9980.el7_8?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-2:1.13.1-161.git64e9980.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.ppc64le"
},
"product_reference": "docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-2:1.13.1-161.git64e9980.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.s390x"
},
"product_reference": "docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-2:1.13.1-161.git64e9980.el7_8.src as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.src"
},
"product_reference": "docker-2:1.13.1-161.git64e9980.el7_8.src",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-2:1.13.1-161.git64e9980.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.x86_64"
},
"product_reference": "docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le"
},
"product_reference": "docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-client-2:1.13.1-161.git64e9980.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.s390x"
},
"product_reference": "docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64"
},
"product_reference": "docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le"
},
"product_reference": "docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-common-2:1.13.1-161.git64e9980.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.s390x"
},
"product_reference": "docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64"
},
"product_reference": "docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le"
},
"product_reference": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x"
},
"product_reference": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64"
},
"product_reference": "docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le"
},
"product_reference": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x"
},
"product_reference": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64"
},
"product_reference": "docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le"
},
"product_reference": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x"
},
"product_reference": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64"
},
"product_reference": "docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le"
},
"product_reference": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x"
},
"product_reference": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64"
},
"product_reference": "docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le"
},
"product_reference": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x"
},
"product_reference": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64"
},
"product_reference": "docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le"
},
"product_reference": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x"
},
"product_reference": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64 as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64"
},
"product_reference": "docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64",
"relates_to_product_reference": "7Server-EXTRAS-7.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"cwe": {
"id": "CWE-41",
"name": "Improper Resolution of Path Equivalence"
},
"discovery_date": "2019-09-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1757214"
}
],
"notes": [
{
"category": "description",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The AppArmor security module is not supported by Red Hat, on the other hand the flaw also affects SELinux based distributions like Red Hat Enterprise Linux.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.src",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "RHBZ#1757214",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757214"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-16884",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16884"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884"
}
],
"release_date": "2019-09-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-01T00:26:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.src",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.src",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc"
},
{
"acknowledgments": [
{
"names": [
"Oleg Bulatov"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2020-1702",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2020-01-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1792796"
}
],
"notes": [
{
"category": "description",
"text": "A malicious container image can consume an unbounded amount of memory when being pulled to a container runtime host, such as Red Hat Enterprise Linux using podman, or OpenShift Container Platform. An attacker can use this flaw to trick a user, with privileges to pull container images, into crashing the process responsible for pulling the image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "containers/image: Container images read entire image manifest into memory",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.src",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-1702"
},
{
"category": "external",
"summary": "RHBZ#1792796",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1792796"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-1702",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1702"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-1702",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-1702"
}
],
"release_date": "2020-01-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-01T00:26:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.src",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.src",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "containers/image: Container images read entire image manifest into memory"
},
{
"cve": "CVE-2020-8945",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2020-01-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1795838"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in the Go GPGME wrapper library, github.com/proglottis/gpgme. An attacker could use this flaw to crash or cause potential code execution in Go applications that use this library, under certain conditions, during GPG signature verification.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "proglottis/gpgme: Use-after-free in GPGME bindings during container image pull",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "OpenShift 3.11 consumes updates for podman from the RHEL-7 extras channel, hence why it has been marked as wontfix in this instance.\n\nAfter extensive testing of the mentioned vulnerability Red Hat has chosen a severity of Moderate instead of High, because the deallocation of GPGME objects while other parts of code are still using it, the vulnerability can only result in a crash and cannot be used to execute code in any feasible manner, moreover the vulnerability only results in crash if finalizers are called to clean up variables while objects are still being used by the underlying C code. Given the inherent attack complexity being high and the exploitability of the vulnerability limited to a crash, Moderate severity seems adequate.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-416: Use After Free vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nAccess to the platform is granted only after successful hard token-based multi-factor authentication (MFA) and is governed by least privilege to ensure that only authorized users and roles can execute or modify code. Red Hat also enforces least functionality, enabling only essential features, services, and ports. Hardening guidelines ensure the most restrictive settings required for operations, while baseline configurations enforce safe memory allocation and deallocation practices to reduce the risk of use-after-free vulnerabilities. The environment employs IPS/IDS and antimalware solutions to detect and prevent malicious code and provide real-time visibility into memory usage, lowering the risk of arbitrary code execution. Static code analysis and peer reviews enforce strong input validation and error handling, reducing the likelihood of denial-of-service (DoS) attacks. In the event of successful exploitation, process isolation prevents a compromised process from accessing memory freed by another, containing potential impact. Finally, memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) enhance resilience against memory-related vulnerabilities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.src",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-8945"
},
{
"category": "external",
"summary": "RHBZ#1795838",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1795838"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-8945",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8945"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-8945",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8945"
}
],
"release_date": "2020-01-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-01T00:26:32+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.src",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.src",
"7Server-EXTRAS-7.8:docker-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-client-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-common-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-debuginfo-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-logrotate-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-lvm-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-novolume-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-rhel-push-plugin-2:1.13.1-161.git64e9980.el7_8.x86_64",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.ppc64le",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.s390x",
"7Server-EXTRAS-7.8:docker-v1.10-migrator-2:1.13.1-161.git64e9980.el7_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "proglottis/gpgme: Use-after-free in GPGME bindings during container image pull"
}
]
}
RHSA-2019:3940
Vulnerability from csaf_redhat - Published: 2019-11-21 09:51 - Updated: 2025-11-21 18:11Summary
Red Hat Security Advisory: OpenShift Container Platform 4.1.24 runc security update
Notes
Topic
An update for runc is now available for Red Hat OpenShift Container Platform 4.1.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the runC container image for Red Hat OpenShift Container Platform 4.1.24. The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides a container runtime.
Security Fix(es):
* runc: AppArmor/SELinux bypass with malicious image that specifies a volume at the /proc directory (CVE-2019-16884)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for runc is now available for Red Hat OpenShift Container Platform 4.1.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the runC container image for Red Hat OpenShift Container Platform 4.1.24. The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides a container runtime.\n\nSecurity Fix(es):\n\n* runc: AppArmor/SELinux bypass with malicious image that specifies a volume at the /proc directory (CVE-2019-16884)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:3940",
"url": "https://access.redhat.com/errata/RHSA-2019:3940"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1757214",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757214"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3940.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.1.24 runc security update",
"tracking": {
"current_release_date": "2025-11-21T18:11:22+00:00",
"generator": {
"date": "2025-11-21T18:11:22+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2019:3940",
"initial_release_date": "2019-11-21T09:51:40+00:00",
"revision_history": [
{
"date": "2019-11-21T09:51:40+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-11-21T09:51:40+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:11:22+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.1",
"product": {
"name": "Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.1::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"product": {
"name": "runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"product_id": "runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-62.rc8.rhaos4.1.git3cbe540.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"product": {
"name": "runc-debugsource-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"product_id": "runc-debugsource-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.0.0-62.rc8.rhaos4.1.git3cbe540.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"product": {
"name": "runc-debuginfo-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"product_id": "runc-debuginfo-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.0.0-62.rc8.rhaos4.1.git3cbe540.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.src",
"product": {
"name": "runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.src",
"product_id": "runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-62.rc8.rhaos4.1.git3cbe540.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.src"
},
"product_reference": "runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64"
},
"product_reference": "runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:runc-debuginfo-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64"
},
"product_reference": "runc-debuginfo-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:runc-debugsource-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64"
},
"product_reference": "runc-debugsource-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"cwe": {
"id": "CWE-41",
"name": "Improper Resolution of Path Equivalence"
},
"discovery_date": "2019-09-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1757214"
}
],
"notes": [
{
"category": "description",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The AppArmor security module is not supported by Red Hat, on the other hand the flaw also affects SELinux based distributions like Red Hat Enterprise Linux.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.1:runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.src",
"8Base-RHOSE-4.1:runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"8Base-RHOSE-4.1:runc-debuginfo-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"8Base-RHOSE-4.1:runc-debugsource-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "RHBZ#1757214",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757214"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-16884",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16884"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884"
}
],
"release_date": "2019-09-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-11-21T09:51:40+00:00",
"details": "For OpenShift Container Platform 4.1 see the following documentation, which\nwill be updated shortly for release 4.1.24, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.1/release_notes/ocp-4-1-release-notes.html",
"product_ids": [
"8Base-RHOSE-4.1:runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.src",
"8Base-RHOSE-4.1:runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"8Base-RHOSE-4.1:runc-debuginfo-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"8Base-RHOSE-4.1:runc-debugsource-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:3940"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"8Base-RHOSE-4.1:runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.src",
"8Base-RHOSE-4.1:runc-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"8Base-RHOSE-4.1:runc-debuginfo-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64",
"8Base-RHOSE-4.1:runc-debugsource-0:1.0.0-62.rc8.rhaos4.1.git3cbe540.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc"
}
]
}
RHSA-2019:4074
Vulnerability from csaf_redhat - Published: 2019-12-03 21:07 - Updated: 2025-11-21 18:11Summary
Red Hat Security Advisory: OpenShift Container Platform 4.2 runc security update
Notes
Topic
An update for runc is now available for Red Hat OpenShift Container Platform 4.2.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the runc RPM package for Red Hat OpenShift Container Platform 4.2.9. The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides a container runtime.
Security Fix(es):
* runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc (CVE-2019-16884)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for runc is now available for Red Hat OpenShift Container Platform 4.2.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the runc RPM package for Red Hat OpenShift Container Platform 4.2.9. The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides a container runtime.\n\nSecurity Fix(es):\n\n* runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc (CVE-2019-16884)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:4074",
"url": "https://access.redhat.com/errata/RHSA-2019:4074"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1757214",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757214"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_4074.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.2 runc security update",
"tracking": {
"current_release_date": "2025-11-21T18:11:30+00:00",
"generator": {
"date": "2025-11-21T18:11:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2019:4074",
"initial_release_date": "2019-12-03T21:07:04+00:00",
"revision_history": [
{
"date": "2019-12-03T21:07:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-12-03T21:07:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:11:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.2",
"product": {
"name": "Red Hat OpenShift Container Platform 4.2",
"product_id": "8Base-RHOSE-4.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.2::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-0:1.0.0-63.rc8.el8.x86_64",
"product": {
"name": "runc-0:1.0.0-63.rc8.el8.x86_64",
"product_id": "runc-0:1.0.0-63.rc8.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-63.rc8.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-0:1.0.0-63.rc8.el8.x86_64",
"product": {
"name": "runc-debugsource-0:1.0.0-63.rc8.el8.x86_64",
"product_id": "runc-debugsource-0:1.0.0-63.rc8.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.0.0-63.rc8.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-0:1.0.0-63.rc8.el8.x86_64",
"product": {
"name": "runc-debuginfo-0:1.0.0-63.rc8.el8.x86_64",
"product_id": "runc-debuginfo-0:1.0.0-63.rc8.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.0.0-63.rc8.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-0:1.0.0-63.rc8.el8.src",
"product": {
"name": "runc-0:1.0.0-63.rc8.el8.src",
"product_id": "runc-0:1.0.0-63.rc8.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-63.rc8.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-63.rc8.el8.src as a component of Red Hat OpenShift Container Platform 4.2",
"product_id": "8Base-RHOSE-4.2:runc-0:1.0.0-63.rc8.el8.src"
},
"product_reference": "runc-0:1.0.0-63.rc8.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-63.rc8.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.2",
"product_id": "8Base-RHOSE-4.2:runc-0:1.0.0-63.rc8.el8.x86_64"
},
"product_reference": "runc-0:1.0.0-63.rc8.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-63.rc8.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.2",
"product_id": "8Base-RHOSE-4.2:runc-debuginfo-0:1.0.0-63.rc8.el8.x86_64"
},
"product_reference": "runc-debuginfo-0:1.0.0-63.rc8.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-0:1.0.0-63.rc8.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.2",
"product_id": "8Base-RHOSE-4.2:runc-debugsource-0:1.0.0-63.rc8.el8.x86_64"
},
"product_reference": "runc-debugsource-0:1.0.0-63.rc8.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"cwe": {
"id": "CWE-41",
"name": "Improper Resolution of Path Equivalence"
},
"discovery_date": "2019-09-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1757214"
}
],
"notes": [
{
"category": "description",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The AppArmor security module is not supported by Red Hat, on the other hand the flaw also affects SELinux based distributions like Red Hat Enterprise Linux.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.2:runc-0:1.0.0-63.rc8.el8.src",
"8Base-RHOSE-4.2:runc-0:1.0.0-63.rc8.el8.x86_64",
"8Base-RHOSE-4.2:runc-debuginfo-0:1.0.0-63.rc8.el8.x86_64",
"8Base-RHOSE-4.2:runc-debugsource-0:1.0.0-63.rc8.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "RHBZ#1757214",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757214"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-16884",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16884"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884"
}
],
"release_date": "2019-09-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-03T21:07:04+00:00",
"details": "For OpenShift Container Platform 4.2 see the following documentation, which will be updated shortly for release 4.2.9, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.2/release_notes/ocp-4-2-release-notes.html\n\nDetails on how to access this content are available at https://docs.openshift.com/container-platform/4.2/updating/updating-cluster-cli.html.",
"product_ids": [
"8Base-RHOSE-4.2:runc-0:1.0.0-63.rc8.el8.src",
"8Base-RHOSE-4.2:runc-0:1.0.0-63.rc8.el8.x86_64",
"8Base-RHOSE-4.2:runc-debuginfo-0:1.0.0-63.rc8.el8.x86_64",
"8Base-RHOSE-4.2:runc-debugsource-0:1.0.0-63.rc8.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:4074"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"8Base-RHOSE-4.2:runc-0:1.0.0-63.rc8.el8.src",
"8Base-RHOSE-4.2:runc-0:1.0.0-63.rc8.el8.x86_64",
"8Base-RHOSE-4.2:runc-debuginfo-0:1.0.0-63.rc8.el8.x86_64",
"8Base-RHOSE-4.2:runc-debugsource-0:1.0.0-63.rc8.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc"
}
]
}
RHSA-2019:4269
Vulnerability from csaf_redhat - Published: 2019-12-17 12:56 - Updated: 2025-12-19 00:55Summary
Red Hat Security Advisory: container-tools:rhel8 security and bug fix update
Notes
Topic
An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
Security Fix(es):
* HTTP/2: flood using PING frames results in unbounded memory growth (CVE-2019-9512)
* HTTP/2: flood using HEADERS frames results in unbounded memory growth (CVE-2019-9514)
* runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc (CVE-2019-16884)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* avc: podman run --security-opt label=type:svirt_qemu_net_t (BZ#1764318)
* backport json-file logging support to 1.4.2 (BZ#1770176)
* Selinux won't allow SCTP inter pod communication (BZ#1774382)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.\n\nSecurity Fix(es):\n\n* HTTP/2: flood using PING frames results in unbounded memory growth (CVE-2019-9512)\n\n* HTTP/2: flood using HEADERS frames results in unbounded memory growth (CVE-2019-9514)\n\n* runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc (CVE-2019-16884)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* avc: podman run --security-opt label=type:svirt_qemu_net_t (BZ#1764318)\n\n* backport json-file logging support to 1.4.2 (BZ#1770176)\n\n* Selinux won\u0027t allow SCTP inter pod communication (BZ#1774382)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:4269",
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1735645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735645"
},
{
"category": "external",
"summary": "1735744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"
},
{
"category": "external",
"summary": "1757214",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757214"
},
{
"category": "external",
"summary": "1764318",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1764318"
},
{
"category": "external",
"summary": "1770176",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1770176"
},
{
"category": "external",
"summary": "1774382",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1774382"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_4269.json"
}
],
"title": "Red Hat Security Advisory: container-tools:rhel8 security and bug fix update",
"tracking": {
"current_release_date": "2025-12-19T00:55:21+00:00",
"generator": {
"date": "2025-12-19T00:55:21+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.14"
}
},
"id": "RHSA-2019:4269",
"initial_release_date": "2019-12-17T12:56:53+00:00",
"revision_history": [
{
"date": "2019-12-17T12:56:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-12-17T12:56:53+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-12-19T00:55:21+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"product": {
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src (container-tools:rhel8)",
"product_id": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=src\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product": {
"name": "cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src (container-tools:rhel8)",
"product_id": "cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cockpit-podman@4-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=src\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"product": {
"name": "container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src (container-tools:rhel8)",
"product_id": "container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/container-selinux@2.123.0-2.module%2Bel8.1.0%2B4900%2B9d7326b8?arch=src\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src (container-tools:rhel8)",
"product_id": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=src\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src (container-tools:rhel8)",
"product_id": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=src\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src (container-tools:rhel8)",
"product_id": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=src\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product": {
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src (container-tools:rhel8)",
"product_id": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=src\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"product": {
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src (container-tools:rhel8)",
"product_id": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=src\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product": {
"name": "python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src (container-tools:rhel8)",
"product_id": "python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-podman-api@1.2.0-0.1.gitd0a45fe.module%2Bel8.1.0%2B4081%2Bb29780af?arch=src\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"product": {
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src (container-tools:rhel8)",
"product_id": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=src\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"product": {
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src (container-tools:rhel8)",
"product_id": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=src\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"product": {
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src (container-tools:rhel8)",
"product_id": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=src\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product": {
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src (container-tools:rhel8)",
"product_id": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox@0.0.4-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=src\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"product": {
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64 (container-tools:rhel8)",
"product_id": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"product": {
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64 (container-tools:rhel8)",
"product_id": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"product": {
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64 (container-tools:rhel8)",
"product_id": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"product": {
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64 (container-tools:rhel8)",
"product_id": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"product": {
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64 (container-tools:rhel8)",
"product_id": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64 (container-tools:rhel8)",
"product_id": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64 (container-tools:rhel8)",
"product_id": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64 (container-tools:rhel8)",
"product_id": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"product": {
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64 (container-tools:rhel8)",
"product_id": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containers-common@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=x86_64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8)",
"product_id": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8)",
"product_id": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs-debuginfo@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8)",
"product_id": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs-debugsource@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8)",
"product_id": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=x86_64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8)",
"product_id": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook-debuginfo@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=x86_64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8)",
"product_id": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook-debugsource@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=x86_64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product": {
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8)",
"product_id": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=x86_64\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product": {
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8)",
"product_id": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount-debuginfo@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=x86_64\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product": {
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8)",
"product_id": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount-debugsource@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=x86_64\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product": {
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8)",
"product_id": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product": {
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8)",
"product_id": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product": {
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8)",
"product_id": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product": {
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8)",
"product_id": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product": {
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8)",
"product_id": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product": {
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8)",
"product_id": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"product": {
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64 (container-tools:rhel8)",
"product_id": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"product": {
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64 (container-tools:rhel8)",
"product_id": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"product": {
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64 (container-tools:rhel8)",
"product_id": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"product": {
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64 (container-tools:rhel8)",
"product_id": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=x86_64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"product": {
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64 (container-tools:rhel8)",
"product_id": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=x86_64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"product": {
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64 (container-tools:rhel8)",
"product_id": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=x86_64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"product": {
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64 (container-tools:rhel8)",
"product_id": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=x86_64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"product": {
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64 (container-tools:rhel8)",
"product_id": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"product": {
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64 (container-tools:rhel8)",
"product_id": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debuginfo@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"product": {
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64 (container-tools:rhel8)",
"product_id": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debugsource@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product": {
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8)",
"product_id": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox@0.0.4-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=x86_64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"product": {
"name": "cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch (container-tools:rhel8)",
"product_id": "cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cockpit-podman@4-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=noarch\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"product": {
"name": "container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch (container-tools:rhel8)",
"product_id": "container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/container-selinux@2.123.0-2.module%2Bel8.1.0%2B4900%2B9d7326b8?arch=noarch\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"product": {
"name": "podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch (container-tools:rhel8)",
"product_id": "podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-docker@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=noarch\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"product": {
"name": "podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch (container-tools:rhel8)",
"product_id": "podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-manpages@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=noarch\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"product": {
"name": "python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch (container-tools:rhel8)",
"product_id": "python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-podman-api@1.2.0-0.1.gitd0a45fe.module%2Bel8.1.0%2B4081%2Bb29780af?arch=noarch\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"product": {
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x (container-tools:rhel8)",
"product_id": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"product": {
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x (container-tools:rhel8)",
"product_id": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"product": {
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x (container-tools:rhel8)",
"product_id": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"product": {
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x (container-tools:rhel8)",
"product_id": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"product": {
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x (container-tools:rhel8)",
"product_id": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x (container-tools:rhel8)",
"product_id": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x (container-tools:rhel8)",
"product_id": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x (container-tools:rhel8)",
"product_id": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"product": {
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x (container-tools:rhel8)",
"product_id": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containers-common@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=s390x\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8)",
"product_id": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8)",
"product_id": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs-debuginfo@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8)",
"product_id": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs-debugsource@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8)",
"product_id": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=s390x\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8)",
"product_id": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook-debuginfo@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=s390x\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8)",
"product_id": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook-debugsource@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=s390x\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product": {
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8)",
"product_id": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=s390x\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product": {
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8)",
"product_id": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount-debuginfo@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=s390x\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product": {
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8)",
"product_id": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount-debugsource@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=s390x\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product": {
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8)",
"product_id": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product": {
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8)",
"product_id": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product": {
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8)",
"product_id": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product": {
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8)",
"product_id": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product": {
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8)",
"product_id": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product": {
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8)",
"product_id": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"product": {
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x (container-tools:rhel8)",
"product_id": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"product": {
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x (container-tools:rhel8)",
"product_id": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"product": {
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x (container-tools:rhel8)",
"product_id": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"product": {
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x (container-tools:rhel8)",
"product_id": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=s390x\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"product": {
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x (container-tools:rhel8)",
"product_id": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=s390x\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"product": {
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x (container-tools:rhel8)",
"product_id": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=s390x\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"product": {
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x (container-tools:rhel8)",
"product_id": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=s390x\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"product": {
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x (container-tools:rhel8)",
"product_id": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"product": {
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x (container-tools:rhel8)",
"product_id": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debuginfo@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"product": {
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x (container-tools:rhel8)",
"product_id": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debugsource@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product": {
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8)",
"product_id": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox@0.0.4-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=s390x\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"product": {
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le (container-tools:rhel8)",
"product_id": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"product": {
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le (container-tools:rhel8)",
"product_id": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"product": {
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le (container-tools:rhel8)",
"product_id": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"product": {
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le (container-tools:rhel8)",
"product_id": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"product": {
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le (container-tools:rhel8)",
"product_id": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le (container-tools:rhel8)",
"product_id": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le (container-tools:rhel8)",
"product_id": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le (container-tools:rhel8)",
"product_id": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"product": {
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le (container-tools:rhel8)",
"product_id": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containers-common@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=ppc64le\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8)",
"product_id": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8)",
"product_id": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs-debuginfo@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8)",
"product_id": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs-debugsource@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8)",
"product_id": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=ppc64le\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8)",
"product_id": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook-debuginfo@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=ppc64le\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8)",
"product_id": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook-debugsource@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=ppc64le\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product": {
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8)",
"product_id": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=ppc64le\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product": {
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8)",
"product_id": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount-debuginfo@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=ppc64le\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product": {
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8)",
"product_id": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount-debugsource@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=ppc64le\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product": {
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8)",
"product_id": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product": {
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8)",
"product_id": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product": {
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8)",
"product_id": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product": {
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8)",
"product_id": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product": {
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8)",
"product_id": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product": {
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8)",
"product_id": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"product": {
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le (container-tools:rhel8)",
"product_id": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"product": {
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le (container-tools:rhel8)",
"product_id": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"product": {
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le (container-tools:rhel8)",
"product_id": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"product": {
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le (container-tools:rhel8)",
"product_id": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=ppc64le\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"product": {
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le (container-tools:rhel8)",
"product_id": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=ppc64le\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"product": {
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le (container-tools:rhel8)",
"product_id": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=ppc64le\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"product": {
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le (container-tools:rhel8)",
"product_id": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=ppc64le\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"product": {
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le (container-tools:rhel8)",
"product_id": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"product": {
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le (container-tools:rhel8)",
"product_id": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debuginfo@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"product": {
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le (container-tools:rhel8)",
"product_id": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debugsource@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product": {
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8)",
"product_id": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox@0.0.4-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=ppc64le\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"product": {
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64 (container-tools:rhel8)",
"product_id": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"product": {
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64 (container-tools:rhel8)",
"product_id": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"product": {
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64 (container-tools:rhel8)",
"product_id": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"product": {
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64 (container-tools:rhel8)",
"product_id": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"product": {
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64 (container-tools:rhel8)",
"product_id": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.9.0-5.module%2Bel8.1.0%2B4240%2B893c1ab8?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64 (container-tools:rhel8)",
"product_id": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64 (container-tools:rhel8)",
"product_id": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"product": {
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64 (container-tools:rhel8)",
"product_id": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@0.8.1-3.module%2Bel8.1.0%2B4881%2B045289ee?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"product": {
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64 (container-tools:rhel8)",
"product_id": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containers-common@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=aarch64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8)",
"product_id": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8)",
"product_id": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs-debuginfo@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product": {
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8)",
"product_id": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/fuse-overlayfs-debugsource@0.4.1-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8)",
"product_id": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=aarch64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8)",
"product_id": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook-debuginfo@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=aarch64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product": {
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8)",
"product_id": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-systemd-hook-debugsource@0.1.15-2.git2d0b8a3.module%2Bel8.1.0%2B4081%2Bb29780af?arch=aarch64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product": {
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8)",
"product_id": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=aarch64\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product": {
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8)",
"product_id": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount-debuginfo@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=aarch64\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product": {
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8)",
"product_id": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/oci-umount-debugsource@2.3.4-2.git87f9237.module%2Bel8.1.0%2B4081%2Bb29780af?arch=aarch64\u0026epoch=2\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product": {
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8)",
"product_id": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product": {
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8)",
"product_id": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product": {
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8)",
"product_id": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product": {
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8)",
"product_id": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product": {
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8)",
"product_id": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product": {
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8)",
"product_id": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@1.4.2-6.module%2Bel8.1.0%2B4830%2Bf49150d7?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"product": {
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64 (container-tools:rhel8)",
"product_id": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"product": {
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64 (container-tools:rhel8)",
"product_id": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"product": {
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64 (container-tools:rhel8)",
"product_id": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.0.0-61.rc8.module%2Bel8.1.0%2B4873%2B4a24e241?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"product": {
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64 (container-tools:rhel8)",
"product_id": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=aarch64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"product": {
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64 (container-tools:rhel8)",
"product_id": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=aarch64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"product": {
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64 (container-tools:rhel8)",
"product_id": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=aarch64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"product": {
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64 (container-tools:rhel8)",
"product_id": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@0.1.37-6.module%2Bel8.1.0%2B4876%2Be678a192?arch=aarch64\u0026epoch=1\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"product": {
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64 (container-tools:rhel8)",
"product_id": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"product": {
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64 (container-tools:rhel8)",
"product_id": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debuginfo@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"product": {
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64 (container-tools:rhel8)",
"product_id": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/slirp4netns-debugsource@0.3.0-4.module%2Bel8.1.0%2B4306%2B1d917805?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
},
{
"category": "product_version",
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product": {
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8)",
"product_id": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox@0.0.4-1.module%2Bel8.1.0%2B4081%2Bb29780af?arch=aarch64\u0026rpmmod=container-tools:rhel8:8010020191126140055:c294d161"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8"
},
"product_reference": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8"
},
"product_reference": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8"
},
"product_reference": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8"
},
"product_reference": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8"
},
"product_reference": "buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8"
},
"product_reference": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8"
},
"product_reference": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8"
},
"product_reference": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8"
},
"product_reference": "buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8"
},
"product_reference": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8"
},
"product_reference": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8"
},
"product_reference": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8"
},
"product_reference": "buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8"
},
"product_reference": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8"
},
"product_reference": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8"
},
"product_reference": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8"
},
"product_reference": "buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8"
},
"product_reference": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8"
},
"product_reference": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8"
},
"product_reference": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8"
},
"product_reference": "buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8"
},
"product_reference": "cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8"
},
"product_reference": "cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8"
},
"product_reference": "container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8"
},
"product_reference": "container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8"
},
"product_reference": "containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8"
},
"product_reference": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8"
},
"product_reference": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8"
},
"product_reference": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8"
},
"product_reference": "containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
},
"product_reference": "fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
},
"product_reference": "oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8"
},
"product_reference": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8"
},
"product_reference": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8"
},
"product_reference": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8"
},
"product_reference": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
},
"product_reference": "oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8"
},
"product_reference": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8"
},
"product_reference": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8"
},
"product_reference": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
},
"product_reference": "oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8"
},
"product_reference": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8"
},
"product_reference": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8"
},
"product_reference": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
},
"product_reference": "oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8"
},
"product_reference": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8"
},
"product_reference": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8"
},
"product_reference": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8"
},
"product_reference": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8"
},
"product_reference": "podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8"
},
"product_reference": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8"
},
"product_reference": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8"
},
"product_reference": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8"
},
"product_reference": "podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8"
},
"product_reference": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8"
},
"product_reference": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8"
},
"product_reference": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8"
},
"product_reference": "podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8"
},
"product_reference": "podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8"
},
"product_reference": "podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8"
},
"product_reference": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8"
},
"product_reference": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8"
},
"product_reference": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8"
},
"product_reference": "podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8"
},
"product_reference": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8"
},
"product_reference": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8"
},
"product_reference": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8"
},
"product_reference": "podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8"
},
"product_reference": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8"
},
"product_reference": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8"
},
"product_reference": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8"
},
"product_reference": "podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8"
},
"product_reference": "python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8"
},
"product_reference": "python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8"
},
"product_reference": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8"
},
"product_reference": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8"
},
"product_reference": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8"
},
"product_reference": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8"
},
"product_reference": "runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8"
},
"product_reference": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8"
},
"product_reference": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8"
},
"product_reference": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8"
},
"product_reference": "runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8"
},
"product_reference": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8"
},
"product_reference": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8"
},
"product_reference": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8"
},
"product_reference": "runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8"
},
"product_reference": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8"
},
"product_reference": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8"
},
"product_reference": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8"
},
"product_reference": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8"
},
"product_reference": "skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8"
},
"product_reference": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8"
},
"product_reference": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8"
},
"product_reference": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8"
},
"product_reference": "skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8"
},
"product_reference": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8"
},
"product_reference": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8"
},
"product_reference": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8"
},
"product_reference": "skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8"
},
"product_reference": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8"
},
"product_reference": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8"
},
"product_reference": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8"
},
"product_reference": "skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8"
},
"product_reference": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8"
},
"product_reference": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8"
},
"product_reference": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8"
},
"product_reference": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8"
},
"product_reference": "slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8"
},
"product_reference": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8"
},
"product_reference": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8"
},
"product_reference": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8"
},
"product_reference": "slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8"
},
"product_reference": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8"
},
"product_reference": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8"
},
"product_reference": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8"
},
"product_reference": "slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8"
},
"product_reference": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8"
},
"product_reference": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8"
},
"product_reference": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8"
},
"product_reference": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64 (container-tools:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
},
"product_reference": "toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9512",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735645"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using PING frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "RHBZ#1735645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735645"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9512",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9512"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T12:56:53+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using PING frames results in unbounded memory growth"
},
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9514",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735744"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using HEADERS frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9514"
},
{
"category": "external",
"summary": "RHBZ#1735744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9514",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9514"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T12:56:53+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using HEADERS frames results in unbounded memory growth"
},
{
"cve": "CVE-2019-16884",
"cwe": {
"id": "CWE-41",
"name": "Improper Resolution of Path Equivalence"
},
"discovery_date": "2019-09-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1757214"
}
],
"notes": [
{
"category": "description",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The AppArmor security module is not supported by Red Hat, on the other hand the flaw also affects SELinux based distributions like Red Hat Enterprise Linux.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "RHBZ#1757214",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757214"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-16884",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16884"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884"
}
],
"release_date": "2019-09-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T12:56:53+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "runc: AppArmor/SELinux bypass with malicious image that specifies a volume at /proc"
},
{
"cve": "CVE-2019-18466",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2019-08-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1744588"
}
],
"notes": [
{
"category": "description",
"text": "It was discovered that podman resolves a symlink in the host context during a copy operation from the container to the host. An attacker could create a container image containing particular symlinks that, when copied by a victim user to the host filesystem, may overwrite existing files with others from the host.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "podman: resolving symlink in host filesystem leads to unexpected results of copy operation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of podman as shipped with Red Hat Enterprise Linux 8 as they did not include support for the copy function.\n\nThis issue did not affect the versions of podman as shipped in OpenShift Container Platform 3.11 and 4.1 as they did not include support for the copy function.\n\nThe version of podman shipped in OpenShift Container Platform 4.2 was superseded by the version delivered Red Hat Enterprise Linux 8.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-18466"
},
{
"category": "external",
"summary": "RHBZ#1744588",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1744588"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-18466",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18466"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-18466",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-18466"
}
],
"release_date": "2019-08-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-12-17T12:56:53+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 2.5,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-debugsource-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:buildah-tests-debuginfo-0:1.9.0-5.module+el8.1.0+4240+893c1ab8.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:cockpit-podman-0:4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:container-selinux-2:2.123.0-2.module+el8.1.0+4900+9d7326b8.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debuginfo-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containernetworking-plugins-debugsource-0:0.8.1-3.module+el8.1.0+4881+045289ee.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:containers-common-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debuginfo-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:fuse-overlayfs-debugsource-0:0.4.1-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debuginfo-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-systemd-hook-debugsource-1:0.1.15-2.git2d0b8a3.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debuginfo-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:oci-umount-debugsource-2:2.3.4-2.git87f9237.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-debugsource-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-docker-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-manpages-0:1.4.2-6.module+el8.1.0+4830+f49150d7.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-remote-debuginfo-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:podman-tests-0:1.4.2-6.module+el8.1.0+4830+f49150d7.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.noarch::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:python-podman-api-0:1.2.0-0.1.gitd0a45fe.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debuginfo-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:runc-debugsource-0:1.0.0-61.rc8.module+el8.1.0+4873+4a24e241.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debuginfo-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-debugsource-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:skopeo-tests-1:0.1.37-6.module+el8.1.0+4876+e678a192.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debuginfo-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:slirp4netns-debugsource-0:0.3.0-4.module+el8.1.0+4306+1d917805.x86_64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.aarch64::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.ppc64le::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.s390x::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.src::container-tools:rhel8",
"AppStream-8.1.0.Z.MAIN.EUS:toolbox-0:0.0.4-1.module+el8.1.0+4081+b29780af.x86_64::container-tools:rhel8"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "podman: resolving symlink in host filesystem leads to unexpected results of copy operation"
}
]
}
SUSE-SU-2020:0065-1
Vulnerability from csaf_suse - Published: 2020-01-10 10:02 - Updated: 2020-01-10 10:02Summary
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork
Notes
Title of the patch
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork
Description of the patch
This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:
Security issue fixed:
- CVE-2019-16884: Fixed incomplete patch for LSM bypass via malicious Docker image that mount over a /proc directory (bsc#1152308).
Bug fixes:
- Update to Docker 19.03.5-ce (bsc#1158590).
- Update to Docker 19.03.3-ce (bsc#1153367).
- Update to Docker 19.03.2-ce (bsc#1150397).
- Fixed default installation such that --userns-remap=default works properly (bsc#1143349).
- Fixed nginx blocked by apparmor (bsc#1122469).
Patchnames
SUSE-2020-65,SUSE-SLE-Module-Containers-12-2020-65
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2019-16884: Fixed incomplete patch for LSM bypass via malicious Docker image that mount over a /proc directory (bsc#1152308).\n\nBug fixes:\n\n- Update to Docker 19.03.5-ce (bsc#1158590).\n- Update to Docker 19.03.3-ce (bsc#1153367).\n- Update to Docker 19.03.2-ce (bsc#1150397).\n- Fixed default installation such that --userns-remap=default works properly (bsc#1143349).\n- Fixed nginx blocked by apparmor (bsc#1122469).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-65,SUSE-SLE-Module-Containers-12-2020-65",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_0065-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:0065-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20200065-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:0065-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-January/006325.html"
},
{
"category": "self",
"summary": "SUSE Bug 1122469",
"url": "https://bugzilla.suse.com/1122469"
},
{
"category": "self",
"summary": "SUSE Bug 1143349",
"url": "https://bugzilla.suse.com/1143349"
},
{
"category": "self",
"summary": "SUSE Bug 1150397",
"url": "https://bugzilla.suse.com/1150397"
},
{
"category": "self",
"summary": "SUSE Bug 1152308",
"url": "https://bugzilla.suse.com/1152308"
},
{
"category": "self",
"summary": "SUSE Bug 1153367",
"url": "https://bugzilla.suse.com/1153367"
},
{
"category": "self",
"summary": "SUSE Bug 1158590",
"url": "https://bugzilla.suse.com/1158590"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16884 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
}
],
"title": "Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork",
"tracking": {
"current_release_date": "2020-01-10T10:02:51Z",
"generator": {
"date": "2020-01-10T10:02:51Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:0065-1",
"initial_release_date": "2020-01-10T10:02:51Z",
"revision_history": [
{
"date": "2020-01-10T10:02:51Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-16.26.1.aarch64",
"product": {
"name": "containerd-1.2.10-16.26.1.aarch64",
"product_id": "containerd-1.2.10-16.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-16.26.1.aarch64",
"product": {
"name": "containerd-ctr-1.2.10-16.26.1.aarch64",
"product_id": "containerd-ctr-1.2.10-16.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "containerd-kubic-1.2.10-16.26.1.aarch64",
"product": {
"name": "containerd-kubic-1.2.10-16.26.1.aarch64",
"product_id": "containerd-kubic-1.2.10-16.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "containerd-kubic-ctr-1.2.10-16.26.1.aarch64",
"product": {
"name": "containerd-kubic-ctr-1.2.10-16.26.1.aarch64",
"product_id": "containerd-kubic-ctr-1.2.10-16.26.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-98.51.1.aarch64",
"product": {
"name": "docker-19.03.5_ce-98.51.1.aarch64",
"product_id": "docker-19.03.5_ce-98.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-kubic-19.03.5_ce-98.51.1.aarch64",
"product": {
"name": "docker-kubic-19.03.5_ce-98.51.1.aarch64",
"product_id": "docker-kubic-19.03.5_ce-98.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.aarch64",
"product": {
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.aarch64",
"product_id": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-kubic-test-19.03.5_ce-98.51.1.aarch64",
"product": {
"name": "docker-kubic-test-19.03.5_ce-98.51.1.aarch64",
"product_id": "docker-kubic-test-19.03.5_ce-98.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64",
"product": {
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64",
"product_id": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.aarch64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.aarch64",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.aarch64",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.aarch64",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-98.51.1.aarch64",
"product": {
"name": "docker-test-19.03.5_ce-98.51.1.aarch64",
"product_id": "docker-test-19.03.5_ce-98.51.1.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64",
"product": {
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64",
"product_id": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-16.26.1.i586",
"product": {
"name": "containerd-1.2.10-16.26.1.i586",
"product_id": "containerd-1.2.10-16.26.1.i586"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-16.26.1.i586",
"product": {
"name": "containerd-ctr-1.2.10-16.26.1.i586",
"product_id": "containerd-ctr-1.2.10-16.26.1.i586"
}
},
{
"category": "product_version",
"name": "containerd-kubic-1.2.10-16.26.1.i586",
"product": {
"name": "containerd-kubic-1.2.10-16.26.1.i586",
"product_id": "containerd-kubic-1.2.10-16.26.1.i586"
}
},
{
"category": "product_version",
"name": "containerd-kubic-ctr-1.2.10-16.26.1.i586",
"product": {
"name": "containerd-kubic-ctr-1.2.10-16.26.1.i586",
"product_id": "containerd-kubic-ctr-1.2.10-16.26.1.i586"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-98.51.1.i586",
"product": {
"name": "docker-19.03.5_ce-98.51.1.i586",
"product_id": "docker-19.03.5_ce-98.51.1.i586"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586",
"product": {
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586",
"product_id": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.i586",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.i586",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.i586"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.i586",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.i586",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.i586"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-98.51.1.i586",
"product": {
"name": "docker-test-19.03.5_ce-98.51.1.i586",
"product_id": "docker-test-19.03.5_ce-98.51.1.i586"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586",
"product": {
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586",
"product_id": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-bash-completion-19.03.5_ce-98.51.1.noarch",
"product": {
"name": "docker-bash-completion-19.03.5_ce-98.51.1.noarch",
"product_id": "docker-bash-completion-19.03.5_ce-98.51.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-kubic-bash-completion-19.03.5_ce-98.51.1.noarch",
"product": {
"name": "docker-kubic-bash-completion-19.03.5_ce-98.51.1.noarch",
"product_id": "docker-kubic-bash-completion-19.03.5_ce-98.51.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-kubic-zsh-completion-19.03.5_ce-98.51.1.noarch",
"product": {
"name": "docker-kubic-zsh-completion-19.03.5_ce-98.51.1.noarch",
"product_id": "docker-kubic-zsh-completion-19.03.5_ce-98.51.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-zsh-completion-19.03.5_ce-98.51.1.noarch",
"product": {
"name": "docker-zsh-completion-19.03.5_ce-98.51.1.noarch",
"product_id": "docker-zsh-completion-19.03.5_ce-98.51.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-16.26.1.ppc64le",
"product": {
"name": "containerd-1.2.10-16.26.1.ppc64le",
"product_id": "containerd-1.2.10-16.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-16.26.1.ppc64le",
"product": {
"name": "containerd-ctr-1.2.10-16.26.1.ppc64le",
"product_id": "containerd-ctr-1.2.10-16.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "containerd-kubic-1.2.10-16.26.1.ppc64le",
"product": {
"name": "containerd-kubic-1.2.10-16.26.1.ppc64le",
"product_id": "containerd-kubic-1.2.10-16.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "containerd-kubic-ctr-1.2.10-16.26.1.ppc64le",
"product": {
"name": "containerd-kubic-ctr-1.2.10-16.26.1.ppc64le",
"product_id": "containerd-kubic-ctr-1.2.10-16.26.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-98.51.1.ppc64le",
"product": {
"name": "docker-19.03.5_ce-98.51.1.ppc64le",
"product_id": "docker-19.03.5_ce-98.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-kubic-19.03.5_ce-98.51.1.ppc64le",
"product": {
"name": "docker-kubic-19.03.5_ce-98.51.1.ppc64le",
"product_id": "docker-kubic-19.03.5_ce-98.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.ppc64le",
"product": {
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.ppc64le",
"product_id": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-kubic-test-19.03.5_ce-98.51.1.ppc64le",
"product": {
"name": "docker-kubic-test-19.03.5_ce-98.51.1.ppc64le",
"product_id": "docker-kubic-test-19.03.5_ce-98.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"product": {
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"product_id": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-98.51.1.ppc64le",
"product": {
"name": "docker-test-19.03.5_ce-98.51.1.ppc64le",
"product_id": "docker-test-19.03.5_ce-98.51.1.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"product": {
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"product_id": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-16.26.1.s390x",
"product": {
"name": "containerd-1.2.10-16.26.1.s390x",
"product_id": "containerd-1.2.10-16.26.1.s390x"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-16.26.1.s390x",
"product": {
"name": "containerd-ctr-1.2.10-16.26.1.s390x",
"product_id": "containerd-ctr-1.2.10-16.26.1.s390x"
}
},
{
"category": "product_version",
"name": "containerd-kubic-1.2.10-16.26.1.s390x",
"product": {
"name": "containerd-kubic-1.2.10-16.26.1.s390x",
"product_id": "containerd-kubic-1.2.10-16.26.1.s390x"
}
},
{
"category": "product_version",
"name": "containerd-kubic-ctr-1.2.10-16.26.1.s390x",
"product": {
"name": "containerd-kubic-ctr-1.2.10-16.26.1.s390x",
"product_id": "containerd-kubic-ctr-1.2.10-16.26.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-98.51.1.s390x",
"product": {
"name": "docker-19.03.5_ce-98.51.1.s390x",
"product_id": "docker-19.03.5_ce-98.51.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-kubic-19.03.5_ce-98.51.1.s390x",
"product": {
"name": "docker-kubic-19.03.5_ce-98.51.1.s390x",
"product_id": "docker-kubic-19.03.5_ce-98.51.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.s390x",
"product": {
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.s390x",
"product_id": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-kubic-test-19.03.5_ce-98.51.1.s390x",
"product": {
"name": "docker-kubic-test-19.03.5_ce-98.51.1.s390x",
"product_id": "docker-kubic-test-19.03.5_ce-98.51.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"product": {
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"product_id": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-98.51.1.s390x",
"product": {
"name": "docker-test-19.03.5_ce-98.51.1.s390x",
"product_id": "docker-test-19.03.5_ce-98.51.1.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"product": {
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"product_id": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-16.26.1.x86_64",
"product": {
"name": "containerd-1.2.10-16.26.1.x86_64",
"product_id": "containerd-1.2.10-16.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-16.26.1.x86_64",
"product": {
"name": "containerd-ctr-1.2.10-16.26.1.x86_64",
"product_id": "containerd-ctr-1.2.10-16.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerd-kubic-1.2.10-16.26.1.x86_64",
"product": {
"name": "containerd-kubic-1.2.10-16.26.1.x86_64",
"product_id": "containerd-kubic-1.2.10-16.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerd-kubic-ctr-1.2.10-16.26.1.x86_64",
"product": {
"name": "containerd-kubic-ctr-1.2.10-16.26.1.x86_64",
"product_id": "containerd-kubic-ctr-1.2.10-16.26.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-98.51.1.x86_64",
"product": {
"name": "docker-19.03.5_ce-98.51.1.x86_64",
"product_id": "docker-19.03.5_ce-98.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-kubic-19.03.5_ce-98.51.1.x86_64",
"product": {
"name": "docker-kubic-19.03.5_ce-98.51.1.x86_64",
"product_id": "docker-kubic-19.03.5_ce-98.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.x86_64",
"product": {
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.x86_64",
"product_id": "docker-kubic-kubeadm-criconfig-19.03.5_ce-98.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-kubic-test-19.03.5_ce-98.51.1.x86_64",
"product": {
"name": "docker-kubic-test-19.03.5_ce-98.51.1.x86_64",
"product_id": "docker-kubic-test-19.03.5_ce-98.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"product": {
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"product_id": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-98.51.1.x86_64",
"product": {
"name": "docker-test-19.03.5_ce-98.51.1.x86_64",
"product_id": "docker-test-19.03.5_ce-98.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"product": {
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"product_id": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 12",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-16.26.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.ppc64le"
},
"product_reference": "containerd-1.2.10-16.26.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-16.26.1.s390x as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.s390x"
},
"product_reference": "containerd-1.2.10-16.26.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-16.26.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.x86_64"
},
"product_reference": "containerd-1.2.10-16.26.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-98.51.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.ppc64le"
},
"product_reference": "docker-19.03.5_ce-98.51.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-98.51.1.s390x as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.s390x"
},
"product_reference": "docker-19.03.5_ce-98.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-98.51.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.x86_64"
},
"product_reference": "docker-19.03.5_ce-98.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16884"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16884",
"url": "https://www.suse.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "SUSE Bug 1152308 for CVE-2019-16884",
"url": "https://bugzilla.suse.com/1152308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.2.10-16.26.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-19.03.5_ce-98.51.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-28.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-01-10T10:02:51Z",
"details": "moderate"
}
],
"title": "CVE-2019-16884"
}
]
}
SUSE-SU-2020:0035-1
Vulnerability from csaf_suse - Published: 2020-01-08 08:06 - Updated: 2020-01-08 08:06Summary
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork
Notes
Title of the patch
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork
Description of the patch
This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:
Security issue fixed:
- CVE-2019-16884: Fixed incomplete patch for LSM bypass via malicious Docker image that mount over a /proc directory (bsc#1152308).
Bug fixes:
- Update to Docker 19.03.5-ce (bsc#1158590).
- Update to Docker 19.03.3-ce (bsc#1153367).
- Update to Docker 19.03.2-ce (bsc#1150397).
- Fixed default installation such that --userns-remap=default works properly (bsc#1143349).
- Fixed nginx blocked by apparmor (bsc#1122469).
Patchnames
SUSE-2020-35,SUSE-SLE-Module-Containers-15-2020-35,SUSE-SLE-Module-Containers-15-SP1-2020-35,SUSE-SLE-Module-Development-Tools-OBS-15-2020-35,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2020-35
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2019-16884: Fixed incomplete patch for LSM bypass via malicious Docker image that mount over a /proc directory (bsc#1152308). \n\nBug fixes:\n\n- Update to Docker 19.03.5-ce (bsc#1158590).\n- Update to Docker 19.03.3-ce (bsc#1153367).\n- Update to Docker 19.03.2-ce (bsc#1150397).\n- Fixed default installation such that --userns-remap=default works properly (bsc#1143349).\n- Fixed nginx blocked by apparmor (bsc#1122469).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-35,SUSE-SLE-Module-Containers-15-2020-35,SUSE-SLE-Module-Containers-15-SP1-2020-35,SUSE-SLE-Module-Development-Tools-OBS-15-2020-35,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2020-35",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_0035-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:0035-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20200035-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:0035-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-January/006310.html"
},
{
"category": "self",
"summary": "SUSE Bug 1122469",
"url": "https://bugzilla.suse.com/1122469"
},
{
"category": "self",
"summary": "SUSE Bug 1143349",
"url": "https://bugzilla.suse.com/1143349"
},
{
"category": "self",
"summary": "SUSE Bug 1150397",
"url": "https://bugzilla.suse.com/1150397"
},
{
"category": "self",
"summary": "SUSE Bug 1152308",
"url": "https://bugzilla.suse.com/1152308"
},
{
"category": "self",
"summary": "SUSE Bug 1153367",
"url": "https://bugzilla.suse.com/1153367"
},
{
"category": "self",
"summary": "SUSE Bug 1158590",
"url": "https://bugzilla.suse.com/1158590"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16884 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
}
],
"title": "Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork",
"tracking": {
"current_release_date": "2020-01-08T08:06:36Z",
"generator": {
"date": "2020-01-08T08:06:36Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:0035-1",
"initial_release_date": "2020-01-08T08:06:36Z",
"revision_history": [
{
"date": "2020-01-08T08:06:36Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-5.19.1.aarch64",
"product": {
"name": "containerd-1.2.10-5.19.1.aarch64",
"product_id": "containerd-1.2.10-5.19.1.aarch64"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-5.19.1.aarch64",
"product": {
"name": "containerd-ctr-1.2.10-5.19.1.aarch64",
"product_id": "containerd-ctr-1.2.10-5.19.1.aarch64"
}
},
{
"category": "product_version",
"name": "containerd-kubic-1.2.10-5.19.1.aarch64",
"product": {
"name": "containerd-kubic-1.2.10-5.19.1.aarch64",
"product_id": "containerd-kubic-1.2.10-5.19.1.aarch64"
}
},
{
"category": "product_version",
"name": "containerd-kubic-ctr-1.2.10-5.19.1.aarch64",
"product": {
"name": "containerd-kubic-ctr-1.2.10-5.19.1.aarch64",
"product_id": "containerd-kubic-ctr-1.2.10-5.19.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-6.31.1.aarch64",
"product": {
"name": "docker-19.03.5_ce-6.31.1.aarch64",
"product_id": "docker-19.03.5_ce-6.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-kubic-19.03.5_ce-6.31.1.aarch64",
"product": {
"name": "docker-kubic-19.03.5_ce-6.31.1.aarch64",
"product_id": "docker-kubic-19.03.5_ce-6.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.aarch64",
"product": {
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.aarch64",
"product_id": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-kubic-test-19.03.5_ce-6.31.1.aarch64",
"product": {
"name": "docker-kubic-test-19.03.5_ce-6.31.1.aarch64",
"product_id": "docker-kubic-test-19.03.5_ce-6.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"product": {
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"product_id": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-6.31.1.aarch64",
"product": {
"name": "docker-test-19.03.5_ce-6.31.1.aarch64",
"product_id": "docker-test-19.03.5_ce-6.31.1.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"product": {
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"product_id": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-5.19.1.i586",
"product": {
"name": "containerd-1.2.10-5.19.1.i586",
"product_id": "containerd-1.2.10-5.19.1.i586"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-5.19.1.i586",
"product": {
"name": "containerd-ctr-1.2.10-5.19.1.i586",
"product_id": "containerd-ctr-1.2.10-5.19.1.i586"
}
},
{
"category": "product_version",
"name": "containerd-kubic-1.2.10-5.19.1.i586",
"product": {
"name": "containerd-kubic-1.2.10-5.19.1.i586",
"product_id": "containerd-kubic-1.2.10-5.19.1.i586"
}
},
{
"category": "product_version",
"name": "containerd-kubic-ctr-1.2.10-5.19.1.i586",
"product": {
"name": "containerd-kubic-ctr-1.2.10-5.19.1.i586",
"product_id": "containerd-kubic-ctr-1.2.10-5.19.1.i586"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-6.31.1.i586",
"product": {
"name": "docker-19.03.5_ce-6.31.1.i586",
"product_id": "docker-19.03.5_ce-6.31.1.i586"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586",
"product": {
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586",
"product_id": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.i586",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.i586",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.i586"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.i586",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.i586",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.i586"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-6.31.1.i586",
"product": {
"name": "docker-test-19.03.5_ce-6.31.1.i586",
"product_id": "docker-test-19.03.5_ce-6.31.1.i586"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586",
"product": {
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586",
"product_id": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-bash-completion-19.03.5_ce-6.31.1.noarch",
"product": {
"name": "docker-bash-completion-19.03.5_ce-6.31.1.noarch",
"product_id": "docker-bash-completion-19.03.5_ce-6.31.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-kubic-bash-completion-19.03.5_ce-6.31.1.noarch",
"product": {
"name": "docker-kubic-bash-completion-19.03.5_ce-6.31.1.noarch",
"product_id": "docker-kubic-bash-completion-19.03.5_ce-6.31.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-kubic-zsh-completion-19.03.5_ce-6.31.1.noarch",
"product": {
"name": "docker-kubic-zsh-completion-19.03.5_ce-6.31.1.noarch",
"product_id": "docker-kubic-zsh-completion-19.03.5_ce-6.31.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-zsh-completion-19.03.5_ce-6.31.1.noarch",
"product": {
"name": "docker-zsh-completion-19.03.5_ce-6.31.1.noarch",
"product_id": "docker-zsh-completion-19.03.5_ce-6.31.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-5.19.1.ppc64le",
"product": {
"name": "containerd-1.2.10-5.19.1.ppc64le",
"product_id": "containerd-1.2.10-5.19.1.ppc64le"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-5.19.1.ppc64le",
"product": {
"name": "containerd-ctr-1.2.10-5.19.1.ppc64le",
"product_id": "containerd-ctr-1.2.10-5.19.1.ppc64le"
}
},
{
"category": "product_version",
"name": "containerd-kubic-1.2.10-5.19.1.ppc64le",
"product": {
"name": "containerd-kubic-1.2.10-5.19.1.ppc64le",
"product_id": "containerd-kubic-1.2.10-5.19.1.ppc64le"
}
},
{
"category": "product_version",
"name": "containerd-kubic-ctr-1.2.10-5.19.1.ppc64le",
"product": {
"name": "containerd-kubic-ctr-1.2.10-5.19.1.ppc64le",
"product_id": "containerd-kubic-ctr-1.2.10-5.19.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-6.31.1.ppc64le",
"product": {
"name": "docker-19.03.5_ce-6.31.1.ppc64le",
"product_id": "docker-19.03.5_ce-6.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-kubic-19.03.5_ce-6.31.1.ppc64le",
"product": {
"name": "docker-kubic-19.03.5_ce-6.31.1.ppc64le",
"product_id": "docker-kubic-19.03.5_ce-6.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.ppc64le",
"product": {
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.ppc64le",
"product_id": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-kubic-test-19.03.5_ce-6.31.1.ppc64le",
"product": {
"name": "docker-kubic-test-19.03.5_ce-6.31.1.ppc64le",
"product_id": "docker-kubic-test-19.03.5_ce-6.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"product": {
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"product_id": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-6.31.1.ppc64le",
"product": {
"name": "docker-test-19.03.5_ce-6.31.1.ppc64le",
"product_id": "docker-test-19.03.5_ce-6.31.1.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"product": {
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"product_id": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-5.19.1.s390x",
"product": {
"name": "containerd-1.2.10-5.19.1.s390x",
"product_id": "containerd-1.2.10-5.19.1.s390x"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-5.19.1.s390x",
"product": {
"name": "containerd-ctr-1.2.10-5.19.1.s390x",
"product_id": "containerd-ctr-1.2.10-5.19.1.s390x"
}
},
{
"category": "product_version",
"name": "containerd-kubic-1.2.10-5.19.1.s390x",
"product": {
"name": "containerd-kubic-1.2.10-5.19.1.s390x",
"product_id": "containerd-kubic-1.2.10-5.19.1.s390x"
}
},
{
"category": "product_version",
"name": "containerd-kubic-ctr-1.2.10-5.19.1.s390x",
"product": {
"name": "containerd-kubic-ctr-1.2.10-5.19.1.s390x",
"product_id": "containerd-kubic-ctr-1.2.10-5.19.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-6.31.1.s390x",
"product": {
"name": "docker-19.03.5_ce-6.31.1.s390x",
"product_id": "docker-19.03.5_ce-6.31.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-kubic-19.03.5_ce-6.31.1.s390x",
"product": {
"name": "docker-kubic-19.03.5_ce-6.31.1.s390x",
"product_id": "docker-kubic-19.03.5_ce-6.31.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.s390x",
"product": {
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.s390x",
"product_id": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-kubic-test-19.03.5_ce-6.31.1.s390x",
"product": {
"name": "docker-kubic-test-19.03.5_ce-6.31.1.s390x",
"product_id": "docker-kubic-test-19.03.5_ce-6.31.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"product": {
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"product_id": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-6.31.1.s390x",
"product": {
"name": "docker-test-19.03.5_ce-6.31.1.s390x",
"product_id": "docker-test-19.03.5_ce-6.31.1.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"product": {
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"product_id": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.2.10-5.19.1.x86_64",
"product": {
"name": "containerd-1.2.10-5.19.1.x86_64",
"product_id": "containerd-1.2.10-5.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.2.10-5.19.1.x86_64",
"product": {
"name": "containerd-ctr-1.2.10-5.19.1.x86_64",
"product_id": "containerd-ctr-1.2.10-5.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerd-kubic-1.2.10-5.19.1.x86_64",
"product": {
"name": "containerd-kubic-1.2.10-5.19.1.x86_64",
"product_id": "containerd-kubic-1.2.10-5.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerd-kubic-ctr-1.2.10-5.19.1.x86_64",
"product": {
"name": "containerd-kubic-ctr-1.2.10-5.19.1.x86_64",
"product_id": "containerd-kubic-ctr-1.2.10-5.19.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-19.03.5_ce-6.31.1.x86_64",
"product": {
"name": "docker-19.03.5_ce-6.31.1.x86_64",
"product_id": "docker-19.03.5_ce-6.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-kubic-19.03.5_ce-6.31.1.x86_64",
"product": {
"name": "docker-kubic-19.03.5_ce-6.31.1.x86_64",
"product_id": "docker-kubic-19.03.5_ce-6.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.x86_64",
"product": {
"name": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.x86_64",
"product_id": "docker-kubic-kubeadm-criconfig-19.03.5_ce-6.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-kubic-test-19.03.5_ce-6.31.1.x86_64",
"product": {
"name": "docker-kubic-test-19.03.5_ce-6.31.1.x86_64",
"product_id": "docker-kubic-test-19.03.5_ce-6.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"product": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"product_id": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"product": {
"name": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"product_id": "docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64",
"product_id": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-test-19.03.5_ce-6.31.1.x86_64",
"product": {
"name": "docker-test-19.03.5_ce-6.31.1.x86_64",
"product_id": "docker-test-19.03.5_ce-6.31.1.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"product": {
"name": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"product_id": "golang-github-docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"product": {
"name": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"product_id": "golang-github-docker-libnetwork-kubic-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-5.19.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.ppc64le"
},
"product_reference": "containerd-1.2.10-5.19.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-5.19.1.s390x as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.s390x"
},
"product_reference": "containerd-1.2.10-5.19.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-5.19.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.x86_64"
},
"product_reference": "containerd-1.2.10-5.19.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-6.31.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.ppc64le"
},
"product_reference": "docker-19.03.5_ce-6.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-6.31.1.s390x as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.s390x"
},
"product_reference": "docker-19.03.5_ce-6.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-6.31.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.x86_64"
},
"product_reference": "docker-19.03.5_ce-6.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-19.03.5_ce-6.31.1.noarch as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-19.03.5_ce-6.31.1.noarch"
},
"product_reference": "docker-bash-completion-19.03.5_ce-6.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-5.19.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.aarch64"
},
"product_reference": "containerd-1.2.10-5.19.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-5.19.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.ppc64le"
},
"product_reference": "containerd-1.2.10-5.19.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-5.19.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.s390x"
},
"product_reference": "containerd-1.2.10-5.19.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.2.10-5.19.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.x86_64"
},
"product_reference": "containerd-1.2.10-5.19.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-6.31.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.aarch64"
},
"product_reference": "docker-19.03.5_ce-6.31.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-6.31.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.ppc64le"
},
"product_reference": "docker-19.03.5_ce-6.31.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-6.31.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.s390x"
},
"product_reference": "docker-19.03.5_ce-6.31.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-19.03.5_ce-6.31.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.x86_64"
},
"product_reference": "docker-19.03.5_ce-6.31.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-bash-completion-19.03.5_ce-6.31.1.noarch as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-bash-completion-19.03.5_ce-6.31.1.noarch"
},
"product_reference": "docker-bash-completion-19.03.5_ce-6.31.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64"
},
"product_reference": "docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16884"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-bash-completion-19.03.5_ce-6.31.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-19.03.5_ce-6.31.1.noarch",
"SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16884",
"url": "https://www.suse.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "SUSE Bug 1152308 for CVE-2019-16884",
"url": "https://bugzilla.suse.com/1152308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-bash-completion-19.03.5_ce-6.31.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-19.03.5_ce-6.31.1.noarch",
"SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:containerd-1.2.10-5.19.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-19.03.5_ce-6.31.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-bash-completion-19.03.5_ce-6.31.1.noarch",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:containerd-1.2.10-5.19.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-19.03.5_ce-6.31.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-bash-completion-19.03.5_ce-6.31.1.noarch",
"SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-libnetwork-0.7.0.1+gitr2877_3eb39382bfa6-4.18.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.27.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-01-08T08:06:36Z",
"details": "moderate"
}
],
"title": "CVE-2019-16884"
}
]
}
SUSE-SU-2019:2787-1
Vulnerability from csaf_suse - Published: 2019-10-25 13:56 - Updated: 2019-10-25 13:56Summary
Security update for docker-runc
Notes
Title of the patch
Security update for docker-runc
Description of the patch
This update for docker-runc fixes the following issues:
- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)
Patchnames
SUSE-2019-2787,SUSE-SLE-Module-Containers-12-2019-2787
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for docker-runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for docker-runc fixes the following issues:\n\n- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-2787,SUSE-SLE-Module-Containers-12-2019-2787",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2787-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:2787-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192787-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:2787-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-October/006062.html"
},
{
"category": "self",
"summary": "SUSE Bug 1152308",
"url": "https://bugzilla.suse.com/1152308"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16884 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
}
],
"title": "Security update for docker-runc",
"tracking": {
"current_release_date": "2019-10-25T13:56:56Z",
"generator": {
"date": "2019-10-25T13:56:56Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:2787-1",
"initial_release_date": "2019-10-25T13:56:56Z",
"revision_history": [
{
"date": "2019-10-25T13:56:56Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.aarch64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.aarch64",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.aarch64",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.aarch64",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.i586",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.i586",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.i586"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.i586",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.i586",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 12",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16884"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16884",
"url": "https://www.suse.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "SUSE Bug 1152308 for CVE-2019-16884",
"url": "https://bugzilla.suse.com/1152308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-1.32.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T13:56:56Z",
"details": "moderate"
}
],
"title": "CVE-2019-16884"
}
]
}
SUSE-SU-2021:1458-1
Vulnerability from csaf_suse - Published: 2021-04-30 10:58 - Updated: 2021-04-30 10:58Summary
Security update for containerd, docker, runc
Notes
Title of the patch
Security update for containerd, docker, runc
Description of the patch
This update for containerd, docker, runc fixes the following issues:
- Docker was updated to 20.10.6-ce
* Switch version to use -ce suffix rather than _ce to avoid confusing other
tools (bsc#1182476).
* CVE-2021-21284: Fixed a potential privilege escalation when the root user in
the remapped namespace has access to the host filesystem (bsc#1181732)
* CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest
crashes the dockerd daemon (bsc#1181730).
- runc was updated to v1.0.0~rc93 (bsc#1182451 and bsc#1184962).
* Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821).
* Fixed /dev/null is not available (bsc#1168481).
* Fixed an issue where podman hangs when spawned by salt-minion process (bsc#1149954).
* CVE-2019-19921: Fixed a race condition with shared mounts (bsc#1160452).
* CVE-2019-16884: Fixed an LSM bypass via malicious Docker image that mount
over a /proc directory (bsc#1152308).
* CVE-2019-5736: Fixed potential write attacks to the host runc binary (bsc#1121967).
* Fixed an issue where after a kernel-update docker doesn't run (bsc#1131314 bsc#1131553)
* Ensure that we always include the version information in runc (bsc#1053532).
- Switch to Go 1.13 for build.
* CVE-2018-16873: Fixed a potential remote code execution (bsc#1118897).
* CVE-2018-16874: Fixed a directory traversal in 'go get' via curly braces
in import paths (bsc#1118898).
* CVE-2018-16875: Fixed a CPU denial of service (bsc#1118899).
* Fixed an issue with building containers (bsc#1095817).
- containerd was updated to v1.4.4
* CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397).
* Handle a requirement from docker (bsc#1181594).
* Install the containerd-shim* binaries and stop creating (bsc#1183024).
* update version to the one required by docker (bsc#1034053)
- Use -buildmode=pie for tests and binary build (bsc#1048046, bsc#1051429)
- Cleanup seccomp builds similar (bsc#1028638).
- Update to handle the docker-runc removal, and drop the -kubic flavour (bsc#1181677, bsc#1181749)
Patchnames
SUSE-2021-1458,SUSE-SLE-Module-Containers-12-2021-1458
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for containerd, docker, runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for containerd, docker, runc fixes the following issues:\n\n- Docker was updated to 20.10.6-ce\n * Switch version to use -ce suffix rather than _ce to avoid confusing other\n tools (bsc#1182476).\n * CVE-2021-21284: Fixed a potential privilege escalation when the root user in \n the remapped namespace has access to the host filesystem (bsc#1181732)\n * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest \n crashes the dockerd daemon (bsc#1181730). \n\n- runc was updated to v1.0.0~rc93 (bsc#1182451 and bsc#1184962).\n * Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821).\n * Fixed /dev/null is not available (bsc#1168481).\n * Fixed an issue where podman hangs when spawned by salt-minion process (bsc#1149954).\n * CVE-2019-19921: Fixed a race condition with shared mounts (bsc#1160452).\n * CVE-2019-16884: Fixed an LSM bypass via malicious Docker image that mount \n over a /proc directory (bsc#1152308).\n * CVE-2019-5736: Fixed potential write attacks to the host runc binary (bsc#1121967).\n * Fixed an issue where after a kernel-update docker doesn\u0027t run (bsc#1131314 bsc#1131553)\n * Ensure that we always include the version information in runc (bsc#1053532).\n \n- Switch to Go 1.13 for build.\n * CVE-2018-16873: Fixed a potential remote code execution (bsc#1118897).\n * CVE-2018-16874: Fixed a directory traversal in \u0027go get\u0027 via curly braces \n in import paths (bsc#1118898).\n * CVE-2018-16875: Fixed a CPU denial of service (bsc#1118899).\n * Fixed an issue with building containers (bsc#1095817).\n\n- containerd was updated to v1.4.4\n * CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397).\n * Handle a requirement from docker (bsc#1181594).\n * Install the containerd-shim* binaries and stop creating (bsc#1183024).\n * update version to the one required by docker (bsc#1034053)\n\n- Use -buildmode=pie for tests and binary build (bsc#1048046, bsc#1051429)\n- Cleanup seccomp builds similar (bsc#1028638).\n- Update to handle the docker-runc removal, and drop the -kubic flavour (bsc#1181677, bsc#1181749)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-1458,SUSE-SLE-Module-Containers-12-2021-1458",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_1458-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:1458-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20211458-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:1458-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-April/008717.html"
},
{
"category": "self",
"summary": "SUSE Bug 1028638",
"url": "https://bugzilla.suse.com/1028638"
},
{
"category": "self",
"summary": "SUSE Bug 1034053",
"url": "https://bugzilla.suse.com/1034053"
},
{
"category": "self",
"summary": "SUSE Bug 1048046",
"url": "https://bugzilla.suse.com/1048046"
},
{
"category": "self",
"summary": "SUSE Bug 1051429",
"url": "https://bugzilla.suse.com/1051429"
},
{
"category": "self",
"summary": "SUSE Bug 1053532",
"url": "https://bugzilla.suse.com/1053532"
},
{
"category": "self",
"summary": "SUSE Bug 1095817",
"url": "https://bugzilla.suse.com/1095817"
},
{
"category": "self",
"summary": "SUSE Bug 1118897",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "self",
"summary": "SUSE Bug 1118898",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "self",
"summary": "SUSE Bug 1118899",
"url": "https://bugzilla.suse.com/1118899"
},
{
"category": "self",
"summary": "SUSE Bug 1121967",
"url": "https://bugzilla.suse.com/1121967"
},
{
"category": "self",
"summary": "SUSE Bug 1131314",
"url": "https://bugzilla.suse.com/1131314"
},
{
"category": "self",
"summary": "SUSE Bug 1131553",
"url": "https://bugzilla.suse.com/1131553"
},
{
"category": "self",
"summary": "SUSE Bug 1149954",
"url": "https://bugzilla.suse.com/1149954"
},
{
"category": "self",
"summary": "SUSE Bug 1152308",
"url": "https://bugzilla.suse.com/1152308"
},
{
"category": "self",
"summary": "SUSE Bug 1160452",
"url": "https://bugzilla.suse.com/1160452"
},
{
"category": "self",
"summary": "SUSE Bug 1168481",
"url": "https://bugzilla.suse.com/1168481"
},
{
"category": "self",
"summary": "SUSE Bug 1175081",
"url": "https://bugzilla.suse.com/1175081"
},
{
"category": "self",
"summary": "SUSE Bug 1175821",
"url": "https://bugzilla.suse.com/1175821"
},
{
"category": "self",
"summary": "SUSE Bug 1181594",
"url": "https://bugzilla.suse.com/1181594"
},
{
"category": "self",
"summary": "SUSE Bug 1181641",
"url": "https://bugzilla.suse.com/1181641"
},
{
"category": "self",
"summary": "SUSE Bug 1181677",
"url": "https://bugzilla.suse.com/1181677"
},
{
"category": "self",
"summary": "SUSE Bug 1181730",
"url": "https://bugzilla.suse.com/1181730"
},
{
"category": "self",
"summary": "SUSE Bug 1181732",
"url": "https://bugzilla.suse.com/1181732"
},
{
"category": "self",
"summary": "SUSE Bug 1181749",
"url": "https://bugzilla.suse.com/1181749"
},
{
"category": "self",
"summary": "SUSE Bug 1182451",
"url": "https://bugzilla.suse.com/1182451"
},
{
"category": "self",
"summary": "SUSE Bug 1182476",
"url": "https://bugzilla.suse.com/1182476"
},
{
"category": "self",
"summary": "SUSE Bug 1182947",
"url": "https://bugzilla.suse.com/1182947"
},
{
"category": "self",
"summary": "SUSE Bug 1183024",
"url": "https://bugzilla.suse.com/1183024"
},
{
"category": "self",
"summary": "SUSE Bug 1183397",
"url": "https://bugzilla.suse.com/1183397"
},
{
"category": "self",
"summary": "SUSE Bug 1183855",
"url": "https://bugzilla.suse.com/1183855"
},
{
"category": "self",
"summary": "SUSE Bug 1184768",
"url": "https://bugzilla.suse.com/1184768"
},
{
"category": "self",
"summary": "SUSE Bug 1184962",
"url": "https://bugzilla.suse.com/1184962"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16873 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16874 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16875 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16884 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-19921 page",
"url": "https://www.suse.com/security/cve/CVE-2019-19921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-5736 page",
"url": "https://www.suse.com/security/cve/CVE-2019-5736/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21284 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21285 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21334 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21334/"
}
],
"title": "Security update for containerd, docker, runc",
"tracking": {
"current_release_date": "2021-04-30T10:58:51Z",
"generator": {
"date": "2021-04-30T10:58:51Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:1458-1",
"initial_release_date": "2021-04-30T10:58:51Z",
"revision_history": [
{
"date": "2021-04-30T10:58:51Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.4.4-16.38.1.aarch64",
"product": {
"name": "containerd-1.4.4-16.38.1.aarch64",
"product_id": "containerd-1.4.4-16.38.1.aarch64"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.4.4-16.38.1.aarch64",
"product": {
"name": "containerd-ctr-1.4.4-16.38.1.aarch64",
"product_id": "containerd-ctr-1.4.4-16.38.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-20.10.6_ce-98.66.1.aarch64",
"product": {
"name": "docker-20.10.6_ce-98.66.1.aarch64",
"product_id": "docker-20.10.6_ce-98.66.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-kubic-20.10.6_ce-98.66.1.aarch64",
"product": {
"name": "docker-kubic-20.10.6_ce-98.66.1.aarch64",
"product_id": "docker-kubic-20.10.6_ce-98.66.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.aarch64",
"product": {
"name": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.aarch64",
"product_id": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.aarch64"
}
},
{
"category": "product_version",
"name": "runc-1.0.0~rc93-16.8.1.aarch64",
"product": {
"name": "runc-1.0.0~rc93-16.8.1.aarch64",
"product_id": "runc-1.0.0~rc93-16.8.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.4.4-16.38.1.i586",
"product": {
"name": "containerd-1.4.4-16.38.1.i586",
"product_id": "containerd-1.4.4-16.38.1.i586"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.4.4-16.38.1.i586",
"product": {
"name": "containerd-ctr-1.4.4-16.38.1.i586",
"product_id": "containerd-ctr-1.4.4-16.38.1.i586"
}
},
{
"category": "product_version",
"name": "docker-20.10.6_ce-98.66.1.i586",
"product": {
"name": "docker-20.10.6_ce-98.66.1.i586",
"product_id": "docker-20.10.6_ce-98.66.1.i586"
}
},
{
"category": "product_version",
"name": "runc-1.0.0~rc93-16.8.1.i586",
"product": {
"name": "runc-1.0.0~rc93-16.8.1.i586",
"product_id": "runc-1.0.0~rc93-16.8.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-bash-completion-20.10.6_ce-98.66.1.noarch",
"product": {
"name": "docker-bash-completion-20.10.6_ce-98.66.1.noarch",
"product_id": "docker-bash-completion-20.10.6_ce-98.66.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-fish-completion-20.10.6_ce-98.66.1.noarch",
"product": {
"name": "docker-fish-completion-20.10.6_ce-98.66.1.noarch",
"product_id": "docker-fish-completion-20.10.6_ce-98.66.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-kubic-bash-completion-20.10.6_ce-98.66.1.noarch",
"product": {
"name": "docker-kubic-bash-completion-20.10.6_ce-98.66.1.noarch",
"product_id": "docker-kubic-bash-completion-20.10.6_ce-98.66.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-kubic-fish-completion-20.10.6_ce-98.66.1.noarch",
"product": {
"name": "docker-kubic-fish-completion-20.10.6_ce-98.66.1.noarch",
"product_id": "docker-kubic-fish-completion-20.10.6_ce-98.66.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-kubic-zsh-completion-20.10.6_ce-98.66.1.noarch",
"product": {
"name": "docker-kubic-zsh-completion-20.10.6_ce-98.66.1.noarch",
"product_id": "docker-kubic-zsh-completion-20.10.6_ce-98.66.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-zsh-completion-20.10.6_ce-98.66.1.noarch",
"product": {
"name": "docker-zsh-completion-20.10.6_ce-98.66.1.noarch",
"product_id": "docker-zsh-completion-20.10.6_ce-98.66.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.4.4-16.38.1.ppc64le",
"product": {
"name": "containerd-1.4.4-16.38.1.ppc64le",
"product_id": "containerd-1.4.4-16.38.1.ppc64le"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.4.4-16.38.1.ppc64le",
"product": {
"name": "containerd-ctr-1.4.4-16.38.1.ppc64le",
"product_id": "containerd-ctr-1.4.4-16.38.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-20.10.6_ce-98.66.1.ppc64le",
"product": {
"name": "docker-20.10.6_ce-98.66.1.ppc64le",
"product_id": "docker-20.10.6_ce-98.66.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-kubic-20.10.6_ce-98.66.1.ppc64le",
"product": {
"name": "docker-kubic-20.10.6_ce-98.66.1.ppc64le",
"product_id": "docker-kubic-20.10.6_ce-98.66.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.ppc64le",
"product": {
"name": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.ppc64le",
"product_id": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.ppc64le"
}
},
{
"category": "product_version",
"name": "runc-1.0.0~rc93-16.8.1.ppc64le",
"product": {
"name": "runc-1.0.0~rc93-16.8.1.ppc64le",
"product_id": "runc-1.0.0~rc93-16.8.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.4.4-16.38.1.s390x",
"product": {
"name": "containerd-1.4.4-16.38.1.s390x",
"product_id": "containerd-1.4.4-16.38.1.s390x"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.4.4-16.38.1.s390x",
"product": {
"name": "containerd-ctr-1.4.4-16.38.1.s390x",
"product_id": "containerd-ctr-1.4.4-16.38.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-20.10.6_ce-98.66.1.s390x",
"product": {
"name": "docker-20.10.6_ce-98.66.1.s390x",
"product_id": "docker-20.10.6_ce-98.66.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-kubic-20.10.6_ce-98.66.1.s390x",
"product": {
"name": "docker-kubic-20.10.6_ce-98.66.1.s390x",
"product_id": "docker-kubic-20.10.6_ce-98.66.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.s390x",
"product": {
"name": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.s390x",
"product_id": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.s390x"
}
},
{
"category": "product_version",
"name": "runc-1.0.0~rc93-16.8.1.s390x",
"product": {
"name": "runc-1.0.0~rc93-16.8.1.s390x",
"product_id": "runc-1.0.0~rc93-16.8.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.4.4-16.38.1.x86_64",
"product": {
"name": "containerd-1.4.4-16.38.1.x86_64",
"product_id": "containerd-1.4.4-16.38.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.4.4-16.38.1.x86_64",
"product": {
"name": "containerd-ctr-1.4.4-16.38.1.x86_64",
"product_id": "containerd-ctr-1.4.4-16.38.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-20.10.6_ce-98.66.1.x86_64",
"product": {
"name": "docker-20.10.6_ce-98.66.1.x86_64",
"product_id": "docker-20.10.6_ce-98.66.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-kubic-20.10.6_ce-98.66.1.x86_64",
"product": {
"name": "docker-kubic-20.10.6_ce-98.66.1.x86_64",
"product_id": "docker-kubic-20.10.6_ce-98.66.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.x86_64",
"product": {
"name": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.x86_64",
"product_id": "docker-kubic-kubeadm-criconfig-20.10.6_ce-98.66.1.x86_64"
}
},
{
"category": "product_version",
"name": "runc-1.0.0~rc93-16.8.1.x86_64",
"product": {
"name": "runc-1.0.0~rc93-16.8.1.x86_64",
"product_id": "runc-1.0.0~rc93-16.8.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 12",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:12"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.4.4-16.38.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le"
},
"product_reference": "containerd-1.4.4-16.38.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.4.4-16.38.1.s390x as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x"
},
"product_reference": "containerd-1.4.4-16.38.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.4.4-16.38.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64"
},
"product_reference": "containerd-1.4.4-16.38.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-20.10.6_ce-98.66.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le"
},
"product_reference": "docker-20.10.6_ce-98.66.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-20.10.6_ce-98.66.1.s390x as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x"
},
"product_reference": "docker-20.10.6_ce-98.66.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-20.10.6_ce-98.66.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64"
},
"product_reference": "docker-20.10.6_ce-98.66.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.0~rc93-16.8.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le"
},
"product_reference": "runc-1.0.0~rc93-16.8.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.0~rc93-16.8.1.s390x as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x"
},
"product_reference": "runc-1.0.0~rc93-16.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.0~rc93-16.8.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 12",
"product_id": "SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
},
"product_reference": "runc-1.0.0~rc93-16.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-16873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16873"
}
],
"notes": [
{
"category": "general",
"text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16873",
"url": "https://www.suse.com/security/cve/CVE-2018-16873"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-04-30T10:58:51Z",
"details": "important"
}
],
"title": "CVE-2018-16873"
},
{
"cve": "CVE-2018-16874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16874"
}
],
"notes": [
{
"category": "general",
"text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16874",
"url": "https://www.suse.com/security/cve/CVE-2018-16874"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-04-30T10:58:51Z",
"details": "moderate"
}
],
"title": "CVE-2018-16874"
},
{
"cve": "CVE-2018-16875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16875"
}
],
"notes": [
{
"category": "general",
"text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16875",
"url": "https://www.suse.com/security/cve/CVE-2018-16875"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-04-30T10:58:51Z",
"details": "moderate"
}
],
"title": "CVE-2018-16875"
},
{
"cve": "CVE-2019-16884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16884"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16884",
"url": "https://www.suse.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "SUSE Bug 1152308 for CVE-2019-16884",
"url": "https://bugzilla.suse.com/1152308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-04-30T10:58:51Z",
"details": "moderate"
}
],
"title": "CVE-2019-16884"
},
{
"cve": "CVE-2019-19921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-19921"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vulnerability does not affect Docker due to an implementation detail that happens to block the attack.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-19921",
"url": "https://www.suse.com/security/cve/CVE-2019-19921"
},
{
"category": "external",
"summary": "SUSE Bug 1160452 for CVE-2019-19921",
"url": "https://bugzilla.suse.com/1160452"
},
{
"category": "external",
"summary": "SUSE Bug 1208962 for CVE-2019-19921",
"url": "https://bugzilla.suse.com/1208962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-04-30T10:58:51Z",
"details": "important"
}
],
"title": "CVE-2019-19921"
},
{
"cve": "CVE-2019-5736",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-5736"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image, or (2) an existing container, to which the attacker previously had write access, that can be attached with docker exec. This occurs because of file-descriptor mishandling, related to /proc/self/exe.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-5736",
"url": "https://www.suse.com/security/cve/CVE-2019-5736"
},
{
"category": "external",
"summary": "SUSE Bug 1121967 for CVE-2019-5736",
"url": "https://bugzilla.suse.com/1121967"
},
{
"category": "external",
"summary": "SUSE Bug 1122185 for CVE-2019-5736",
"url": "https://bugzilla.suse.com/1122185"
},
{
"category": "external",
"summary": "SUSE Bug 1173421 for CVE-2019-5736",
"url": "https://bugzilla.suse.com/1173421"
},
{
"category": "external",
"summary": "SUSE Bug 1218894 for CVE-2019-5736",
"url": "https://bugzilla.suse.com/1218894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-04-30T10:58:51Z",
"details": "moderate"
}
],
"title": "CVE-2019-5736"
},
{
"cve": "CVE-2021-21284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21284"
}
],
"notes": [
{
"category": "general",
"text": "In Docker before versions 9.03.15, 20.10.3 there is a vulnerability involving the --userns-remap option in which access to remapped root allows privilege escalation to real root. When using \"--userns-remap\", if the root user in the remapped namespace has access to the host filesystem they can modify files under \"/var/lib/docker/\u003cremapping\u003e\" that cause writing files with extended privileges. Versions 20.10.3 and 19.03.15 contain patches that prevent privilege escalation from remapped user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21284",
"url": "https://www.suse.com/security/cve/CVE-2021-21284"
},
{
"category": "external",
"summary": "SUSE Bug 1181732 for CVE-2021-21284",
"url": "https://bugzilla.suse.com/1181732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-04-30T10:58:51Z",
"details": "low"
}
],
"title": "CVE-2021-21284"
},
{
"cve": "CVE-2021-21285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21285"
}
],
"notes": [
{
"category": "general",
"text": "In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21285",
"url": "https://www.suse.com/security/cve/CVE-2021-21285"
},
{
"category": "external",
"summary": "SUSE Bug 1181730 for CVE-2021-21285",
"url": "https://bugzilla.suse.com/1181730"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-04-30T10:58:51Z",
"details": "moderate"
}
],
"title": "CVE-2021-21285"
},
{
"cve": "CVE-2021-21334",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21334"
}
],
"notes": [
{
"category": "general",
"text": "In containerd (an industry-standard container runtime) before versions 1.3.10 and 1.4.4, containers launched through containerd\u0027s CRI implementation (through Kubernetes, crictl, or any other pod/container client that uses the containerd CRI service) that share the same image may receive incorrect environment variables, including values that are defined for other containers. If the affected containers have different security contexts, this may allow sensitive information to be unintentionally shared. If you are not using containerd\u0027s CRI implementation (through one of the mechanisms described above), you are not vulnerable to this issue. If you are not launching multiple containers or Kubernetes pods from the same image which have different environment variables, you are not vulnerable to this issue. If you are not launching multiple containers or Kubernetes pods from the same image in rapid succession, you have reduced likelihood of being vulnerable to this issue This vulnerability has been fixed in containerd 1.3.10 and containerd 1.4.4. Users should update to these versions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21334",
"url": "https://www.suse.com/security/cve/CVE-2021-21334"
},
{
"category": "external",
"summary": "SUSE Bug 1183397 for CVE-2021-21334",
"url": "https://bugzilla.suse.com/1183397"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:containerd-1.4.4-16.38.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:docker-20.10.6_ce-98.66.1.x86_64",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.s390x",
"SUSE Linux Enterprise Module for Containers 12:runc-1.0.0~rc93-16.8.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-04-30T10:58:51Z",
"details": "moderate"
}
],
"title": "CVE-2021-21334"
}
]
}
SUSE-SU-2019:2810-1
Vulnerability from csaf_suse - Published: 2019-10-29 13:56 - Updated: 2019-10-29 13:56Summary
Security update for runc
Notes
Title of the patch
Security update for runc
Description of the patch
This update for runc fixes the following issues:
Security issue fixed:
- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)
Non-security issues fixed:
- Includes upstreamed patches for regressions (bsc#1131314 bsc#1131553).
Patchnames
SUSE-2019-2810,SUSE-SLE-Module-Containers-15-SP1-2019-2810,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2810
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for runc fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)\n\nNon-security issues fixed:\n\n- Includes upstreamed patches for regressions (bsc#1131314 bsc#1131553).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-2810,SUSE-SLE-Module-Containers-15-SP1-2019-2810,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2810",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2810-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:2810-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192810-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:2810-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-October/006069.html"
},
{
"category": "self",
"summary": "SUSE Bug 1131314",
"url": "https://bugzilla.suse.com/1131314"
},
{
"category": "self",
"summary": "SUSE Bug 1131553",
"url": "https://bugzilla.suse.com/1131553"
},
{
"category": "self",
"summary": "SUSE Bug 1152308",
"url": "https://bugzilla.suse.com/1152308"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16884 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
}
],
"title": "Security update for runc",
"tracking": {
"current_release_date": "2019-10-29T13:56:47Z",
"generator": {
"date": "2019-10-29T13:56:47Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:2810-1",
"initial_release_date": "2019-10-29T13:56:47Z",
"revision_history": [
{
"date": "2019-10-29T13:56:47Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "runc-1.0.0~rc8-1.6.1.aarch64",
"product": {
"name": "runc-1.0.0~rc8-1.6.1.aarch64",
"product_id": "runc-1.0.0~rc8-1.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.0.0~rc8-1.6.1.i586",
"product": {
"name": "runc-1.0.0~rc8-1.6.1.i586",
"product_id": "runc-1.0.0~rc8-1.6.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-test-1.0.0~rc8-1.6.1.noarch",
"product": {
"name": "runc-test-1.0.0~rc8-1.6.1.noarch",
"product_id": "runc-test-1.0.0~rc8-1.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.0.0~rc8-1.6.1.ppc64le",
"product": {
"name": "runc-1.0.0~rc8-1.6.1.ppc64le",
"product_id": "runc-1.0.0~rc8-1.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.0.0~rc8-1.6.1.s390x",
"product": {
"name": "runc-1.0.0~rc8-1.6.1.s390x",
"product_id": "runc-1.0.0~rc8-1.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-1.0.0~rc8-1.6.1.x86_64",
"product": {
"name": "runc-1.0.0~rc8-1.6.1.x86_64",
"product_id": "runc-1.0.0~rc8-1.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.0~rc8-1.6.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.aarch64"
},
"product_reference": "runc-1.0.0~rc8-1.6.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.0~rc8-1.6.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.ppc64le"
},
"product_reference": "runc-1.0.0~rc8-1.6.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.0~rc8-1.6.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.s390x"
},
"product_reference": "runc-1.0.0~rc8-1.6.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-1.0.0~rc8-1.6.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.x86_64"
},
"product_reference": "runc-1.0.0~rc8-1.6.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16884"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16884",
"url": "https://www.suse.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "SUSE Bug 1152308 for CVE-2019-16884",
"url": "https://bugzilla.suse.com/1152308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:runc-1.0.0~rc8-1.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-29T13:56:47Z",
"details": "moderate"
}
],
"title": "CVE-2019-16884"
}
]
}
SUSE-SU-2019:2786-1
Vulnerability from csaf_suse - Published: 2019-10-25 13:56 - Updated: 2019-10-25 13:56Summary
Security update for docker-runc
Notes
Title of the patch
Security update for docker-runc
Description of the patch
This update for docker-runc fixes the following issues:
- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)
Patchnames
SUSE-2019-2786,SUSE-SLE-Module-Containers-15-2019-2786,SUSE-SLE-Module-Containers-15-SP1-2019-2786,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2786
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for docker-runc",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for docker-runc fixes the following issues:\n\n- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-2786,SUSE-SLE-Module-Containers-15-2019-2786,SUSE-SLE-Module-Containers-15-SP1-2019-2786,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2786",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2786-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:2786-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192786-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:2786-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192786-1.html"
},
{
"category": "self",
"summary": "SUSE Bug 1152308",
"url": "https://bugzilla.suse.com/1152308"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16884 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16884/"
}
],
"title": "Security update for docker-runc",
"tracking": {
"current_release_date": "2019-10-25T13:56:38Z",
"generator": {
"date": "2019-10-25T13:56:38Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:2786-1",
"initial_release_date": "2019-10-25T13:56:38Z",
"revision_history": [
{
"date": "2019-10-25T13:56:38Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.i586",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.i586",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.i586"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.i586",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.i586",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64",
"product": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64",
"product_id": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64",
"product": {
"name": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64",
"product_id": "docker-runc-kubic-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Containers 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-containers:15:sp1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15",
"product_id": "SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64 as component of SUSE Linux Enterprise Module for Containers 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64"
},
"product_reference": "docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Containers 15 SP1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16884"
}
],
"notes": [
{
"category": "general",
"text": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16884",
"url": "https://www.suse.com/security/cve/CVE-2019-16884"
},
{
"category": "external",
"summary": "SUSE Bug 1152308 for CVE-2019-16884",
"url": "https://bugzilla.suse.com/1152308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.aarch64",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"SUSE Linux Enterprise Module for Containers 15 SP1:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.ppc64le",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.s390x",
"SUSE Linux Enterprise Module for Containers 15:docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-25T13:56:38Z",
"details": "moderate"
}
],
"title": "CVE-2019-16884"
}
]
}
GHSA-FGV8-VJ5C-2PPQ
Vulnerability from github – Published: 2022-02-22 15:38 – Updated: 2024-05-20 19:45
VLAI?
Summary
Incorrect Authorization in runc
Details
runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.
Severity ?
7.5 (High)
{
"affected": [
{
"package": {
"ecosystem": "Go",
"name": "github.com/opencontainers/runc"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.0.0-rc8.0.20190930145003-cad42f6e0932"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Go",
"name": "github.com/opencontainers/selinux"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.3.1-0.20190929122143-5215b1806f52"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2019-16884"
],
"database_specific": {
"cwe_ids": [
"CWE-863"
],
"github_reviewed": true,
"github_reviewed_at": "2022-02-22T15:38:08Z",
"nvd_published_at": "2019-09-25T18:15:00Z",
"severity": "HIGH"
},
"details": "runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.",
"id": "GHSA-fgv8-vj5c-2ppq",
"modified": "2024-05-20T19:45:15Z",
"published": "2022-02-22T15:38:08Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16884"
},
{
"type": "WEB",
"url": "https://github.com/opencontainers/runc/issues/2128"
},
{
"type": "WEB",
"url": "https://github.com/opencontainers/runc/pull/2129"
},
{
"type": "WEB",
"url": "https://github.com/opencontainers/runc/pull/2130"
},
{
"type": "WEB",
"url": "https://github.com/crosbymichael/runc/commit/78dce1cf1ec36bbe7fe6767bdb81f7cbf6d34d70"
},
{
"type": "WEB",
"url": "https://github.com/opencontainers/runc/commit/cad42f6e0932db0ce08c3a3d9e89e6063ec283e4"
},
{
"type": "WEB",
"url": "https://github.com/opencontainers/selinux/commit/03b517dc4fd57245b1cf506e8ba7b817b6d309da"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/4297-1"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20220221-0004"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202003-21"
},
{
"type": "WEB",
"url": "https://pkg.go.dev/vuln/GO-2021-0085"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SPK4JWP32BUIVDJ3YODZSOEVEW6BHQCF"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DGK6IV5JGVDXHOXEKJOJWKOVNZLT6MYR"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/62OQ2P7K5YDZ5BRCH2Q6DHUJIHQD3QCD"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2023/02/msg00016.html"
},
{
"type": "PACKAGE",
"url": "https://github.com/opencontainers/runc"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:4074"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:3940"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00073.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00009.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00010.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"type": "CVSS_V3"
}
],
"summary": "Incorrect Authorization in runc"
}
MSRC_CVE-2019-16884
Vulnerability from csaf_microsoft - Published: 2019-09-02 00:00 - Updated: 2021-07-16 00:00Summary
runc through 1.0.0-rc8 as used in Docker through 19.03.2-ce and other products allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets and thus a malicious Docker image can mount over a /proc directory.
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2019-16884 runc through 1.0.0-rc8 as used in Docker through 19.03.2-ce and other products allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets and thus a malicious Docker image can mount over a /proc directory. - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2019/msrc_cve-2019-16884.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "runc through 1.0.0-rc8 as used in Docker through 19.03.2-ce and other products allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets and thus a malicious Docker image can mount over a /proc directory.",
"tracking": {
"current_release_date": "2021-07-16T00:00:00.000Z",
"generator": {
"date": "2025-12-27T21:31:14.353Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2019-16884",
"initial_release_date": "2019-09-02T00:00:00.000Z",
"revision_history": [
{
"date": "2021-07-16T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "1.0",
"product": {
"name": "CBL Mariner 1.0",
"product_id": "16820"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccm1 moby-buildx 0.4.1+azure-3",
"product": {
"name": "\u003ccm1 moby-buildx 0.4.1+azure-3",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "cm1 moby-buildx 0.4.1+azure-3",
"product": {
"name": "cm1 moby-buildx 0.4.1+azure-3",
"product_id": "16833"
}
}
],
"category": "product_name",
"name": "moby-buildx"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccm1 moby-buildx 0.4.1+azure-3 as a component of CBL Mariner 1.0",
"product_id": "16820-1"
},
"product_reference": "1",
"relates_to_product_reference": "16820"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cm1 moby-buildx 0.4.1+azure-3 as a component of CBL Mariner 1.0",
"product_id": "16833-16820"
},
"product_reference": "16833",
"relates_to_product_reference": "16820"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16884",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"notes": [
{
"category": "general",
"text": "mitre",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"16833-16820"
],
"known_affected": [
"16820-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2019-16884 runc through 1.0.0-rc8 as used in Docker through 19.03.2-ce and other products allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets and thus a malicious Docker image can mount over a /proc directory. - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2019/msrc_cve-2019-16884.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2021-07-16T00:00:00.000Z",
"details": "-:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"16820-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalsScore": 0.0,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"16820-1"
]
}
],
"title": "runc through 1.0.0-rc8 as used in Docker through 19.03.2-ce and other products allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets and thus a malicious Docker image can mount over a /proc directory."
}
]
}
CERTFR-2022-AVI-591
Vulnerability from certfr_avis - Published: 2022-06-30 - Updated: 2022-06-30
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Spectrum | IBM Spectrum Protect Plus versions antérieures à 10.1.11 | ||
| IBM | Spectrum | IBM Spectrum Protect Client versions antérieures à 8.1.1.15 | ||
| IBM | N/A | IBM® Db2® et Db2 Warehouse® sur Cloud Pak for Data versions antérieures à 4.5.0 | ||
| IBM | Db2 | IBM® Db2® sur Openshift versions antérieures à 11.5.7.0-cn5 |
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "IBM Spectrum Protect Plus versions ant\u00e9rieures \u00e0 10.1.11",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM Spectrum Protect Client versions ant\u00e9rieures \u00e0 8.1.1.15",
"product": {
"name": "Spectrum",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM\u00ae Db2\u00ae et Db2 Warehouse\u00ae sur Cloud Pak for Data versions ant\u00e9rieures \u00e0 4.5.0",
"product": {
"name": "N/A",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "IBM\u00ae Db2\u00ae sur Openshift versions ant\u00e9rieures \u00e0 11.5.7.0-cn5",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2020-29368",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29368"
},
{
"name": "CVE-2021-20322",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20322"
},
{
"name": "CVE-2018-1099",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1099"
},
{
"name": "CVE-2021-4154",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4154"
},
{
"name": "CVE-2021-45485",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45485"
},
{
"name": "CVE-2022-27191",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27191"
},
{
"name": "CVE-2021-30465",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30465"
},
{
"name": "CVE-2019-11249",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11249"
},
{
"name": "CVE-2020-8557",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8557"
},
{
"name": "CVE-2020-7919",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-7919"
},
{
"name": "CVE-2019-11247",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11247"
},
{
"name": "CVE-2020-28851",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28851"
},
{
"name": "CVE-2021-42248",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42248"
},
{
"name": "CVE-2018-1002105",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1002105"
},
{
"name": "CVE-2021-31525",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-31525"
},
{
"name": "CVE-2020-15112",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15112"
},
{
"name": "CVE-2021-4203",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4203"
},
{
"name": "CVE-2021-25736",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25736"
},
{
"name": "CVE-2020-27813",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27813"
},
{
"name": "CVE-2018-17848",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17848"
},
{
"name": "CVE-2019-16884",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16884"
},
{
"name": "CVE-2021-41864",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41864"
},
{
"name": "CVE-2020-36385",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36385"
},
{
"name": "CVE-2020-25704",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25704"
},
{
"name": "CVE-2021-25735",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25735"
},
{
"name": "CVE-2017-18367",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-18367"
},
{
"name": "CVE-2020-8564",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8564"
},
{
"name": "CVE-2021-20206",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20206"
},
{
"name": "CVE-2019-11246",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11246"
},
{
"name": "CVE-2021-31916",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-31916"
},
{
"name": "CVE-2020-8565",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8565"
},
{
"name": "CVE-2021-27918",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-27918"
},
{
"name": "CVE-2021-3635",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3635"
},
{
"name": "CVE-2021-3573",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3573"
},
{
"name": "CVE-2018-1098",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1098"
},
{
"name": "CVE-2021-28971",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28971"
},
{
"name": "CVE-2019-11254",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11254"
},
{
"name": "CVE-2022-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0286"
},
{
"name": "CVE-2021-4002",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4002"
},
{
"name": "CVE-2021-4083",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4083"
},
{
"name": "CVE-2021-45486",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45486"
},
{
"name": "CVE-2020-8551",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8551"
},
{
"name": "CVE-2017-1002101",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-1002101"
},
{
"name": "CVE-2021-4157",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4157"
},
{
"name": "CVE-2020-15106",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15106"
},
{
"name": "CVE-2021-43784",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43784"
},
{
"name": "CVE-2021-20321",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20321"
},
{
"name": "CVE-2018-17142",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17142"
},
{
"name": "CVE-2022-0185",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0185"
},
{
"name": "CVE-2022-0847",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0847"
},
{
"name": "CVE-2021-41190",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41190"
},
{
"name": "CVE-2021-44733",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44733"
},
{
"name": "CVE-2020-8552",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8552"
},
{
"name": "CVE-2021-20269",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20269"
},
{
"name": "CVE-2020-8554",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8554"
},
{
"name": "CVE-2019-11252",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11252"
},
{
"name": "CVE-2021-3121",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3121"
},
{
"name": "CVE-2019-11250",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11250"
},
{
"name": "CVE-2022-22942",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22942"
},
{
"name": "CVE-2022-1011",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1011"
},
{
"name": "CVE-2021-3669",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3669"
},
{
"name": "CVE-2020-8559",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8559"
},
{
"name": "CVE-2020-10752",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10752"
},
{
"name": "CVE-2021-28950",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28950"
},
{
"name": "CVE-2021-29650",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29650"
},
{
"name": "CVE-2020-36322",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36322"
},
{
"name": "CVE-2020-28852",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28852"
},
{
"name": "CVE-2021-4155",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4155"
},
{
"name": "CVE-2020-15113",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15113"
},
{
"name": "CVE-2020-29652",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29652"
},
{
"name": "CVE-2018-17847",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17847"
},
{
"name": "CVE-2022-0492",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0492"
},
{
"name": "CVE-2020-26160",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26160"
},
{
"name": "CVE-2022-0778",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0778"
},
{
"name": "CVE-2021-42836",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-42836"
},
{
"name": "CVE-2020-8555",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8555"
},
{
"name": "CVE-2021-44716",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44716"
},
{
"name": "CVE-2018-17143",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17143"
},
{
"name": "CVE-2019-11841",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11841"
},
{
"name": "CVE-2018-20699",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20699"
},
{
"name": "CVE-2021-33194",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33194"
},
{
"name": "CVE-2020-14040",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14040"
},
{
"name": "CVE-2021-3764",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3764"
},
{
"name": "CVE-2019-1002101",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1002101"
},
{
"name": "CVE-2021-38201",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38201"
},
{
"name": "CVE-2021-21781",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-21781"
},
{
"name": "CVE-2022-0850",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0850"
},
{
"name": "CVE-2021-3538",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3538"
},
{
"name": "CVE-2019-11253",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11253"
},
{
"name": "CVE-2021-25737",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25737"
},
{
"name": "CVE-2018-17846",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-17846"
},
{
"name": "CVE-2021-4028",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4028"
},
{
"name": "CVE-2021-43565",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43565"
},
{
"name": "CVE-2021-25741",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25741"
},
{
"name": "CVE-2018-16886",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16886"
},
{
"name": "CVE-2021-44907",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44907"
},
{
"name": "CVE-2021-4197",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4197"
},
{
"name": "CVE-2020-9283",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-9283"
},
{
"name": "CVE-2019-11840",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11840"
},
{
"name": "CVE-2019-11251",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11251"
},
{
"name": "CVE-2020-36067",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-36067"
}
],
"initial_release_date": "2022-06-30T00:00:00",
"last_revision_date": "2022-06-30T00:00:00",
"links": [],
"reference": "CERTFR-2022-AVI-591",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2022-06-30T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire, un d\u00e9ni de service \u00e0 distance et un\ncontournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6596399 du 29 juin 2022",
"url": "https://www.ibm.com/support/pages/node/6596399"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6596971 du 29 juin 2022",
"url": "https://www.ibm.com/support/pages/node/6596971"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 IBM 6599703 du 29 juin 2022",
"url": "https://www.ibm.com/support/pages/node/6599703"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…