Lucene search
Basic search
Lucene search
Search by product
Subscribe
K
Start 30-day trial
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
SIGN IN
OracleLinux
ELSA-2020-3053
History
Aug 06, 2020 - 12:00 a.m.
Vulners
/
Oraclelinux
/
container-tools:ol8 security, bug fix, and enhancement update
container-tools:ol8 security, bug fix, and enhancement update
2020-08-06
00:00:00
linux.oracle.com
74
0.821 High
EPSS
Percentile
98.4%
JSON
buildah
[1.14.9-1.0.1]
Fixes troubles with oracle registry login [Orabug: 29937283]
[1.14.9-1]
update to
https://github.com/containers/buildah/releases/tag/v1.14.9
Related: RHELPLAN-39206
[1.14.8-2]
make container-selinux a soft dependency
Related: #1806044
[1.14.8-1]
update to
https://github.com/containers/buildah/releases/tag/v1.14.8
Related: RHELPLAN-39206
[1.14.7-1]
initial rhel8-8.2.1 build
update to
https://github.com/containers/buildah/releases/tag/v1.14.7
Related: RHELPLAN-39206
cockpit-podman
[17-1]
update to
https://github.com/cockpit-project/cockpit-podman/releases/tag/17
Related: RHELPLAN-39206
[16-1]
update to
https://github.com/cockpit-project/cockpit-podman/releases/tag/v16
Related: RHELPLAN-39206
[15-1]
update to
https://github.com/cockpit-project/cockpit-podman/releases/tag/15
Related: RHELPLAN-39206
[12-1]
Configure CPU share for system containers
Translation updates
conmon
[2:2.0.17-1.0.1]
Remove upstream references [Orabug: 30871880]
[2:2.0.17-1]
update to
https://github.com/containers/conmon/releases/tag/v2.0.17
Related: RHELPLAN-39206
[2:2.0.16-1]
update to
https://github.com/containers/conmon/releases/tag/v2.0.16
Related: RHELPLAN-39206
[2:2.0.15-1]
update to 2.0.15
Related: #1821204
containernetworking-plugins
[0.8.6-1]
update to
https://github.com/containernetworking/plugins/releases/tag/v0.8.6
Related: RHELPLAN-39206
[0.8.5-1]
update to
https://github.com/containernetworking/plugins/archive/v0.8.5.tar.gz
Related: RHELPLAN-39206
container-selinux
[2:2.135.0-1]
update to
https://github.com/containers/container-selinux/releases/tag/v2.135.0
Related: RHELPLAN-39206
[2:2.134.0-1]
update to
https://github.com/containers/container-selinux/releases/tag/v2.134.0
Related: RHELPLAN-39206
[2:2.132.0-2]
sync with Fedora and install selinux contexts file into /usr/share/containers/selinux/contexts
(thanks to Dan Walsh)
do not print error in RPM transaction log when customizable_types file is missing
Related: RHELPLAN-39206
[2:2.132.0-1]
update to
https://github.com/containers/container-selinux/releases/tag/v2.132.0
Related: RHELPLAN-39206
[2:2.131.0-1]
update to
https://github.com/containers/container-selinux/releases/tag/v2.131.0
Related: RHELPLAN-39206
[2:2.130.0-1]
update to
https://github.com/containers/container-selinux/releases/tag/v2.130.0
dont use macros in changelog
Related: #1821204
criu
[3.14-2]
fix ‘Need to fix bugs found by coverity.’
Resolves: #1838991
[3.14-1]
update to
https://github.com/checkpoint-restore/criu/releases/tag/v3.14
Related: RHELPLAN-39206
[3.13-1]
update to 3.13
Related: RHELPLAN-39206
fuse-overlayfs
[1.0.0-2]
remove bogus Provides from spec
Related: RHELPLAN-39206
[1.0.0-1]
update to
https://github.com/containers/fuse-overlayfs/releases/tag/v1.0.0
Related: RHELPLAN-39206
libslirp
[4.3.0-3]
fix static analysis issues merged upstream
(
https://gitlab.freedesktop.org/slirp/libslirp/-/merge_requests/41
)
Related: #1823657
[4.3.0-2]
initial libslirp build for container-tools 8.2.1 module
Resolves: #1823657
[4.3.0-1]
New v4.3.0 release
podman
[1.9.3-2.0.1]
delivering fix for [Orabug: 29874238] by Nikita Gerasimov
[1.9.3-2]
fix ‘Signature verification incorrectly uses mirrors references’
Resolves: #1829061
[1.9.3-1]
update to
https://github.com/containers/libpod/releases/tag/v1.9.3
Related: RHELPLAN-39206
[1.9.2-3]
fix ‘Podman support for FIPS Mode requires a bind mount inside the container’
version the oci-systemd-hook obsolete
Related: #1784950
Related: #1836180
[1.9.2-2]
obsolete oci-systemd-hook package
Resolves: #1836180
[1.9.2-1]
update to
https://github.com/containers/libpod/releases/tag/v1.9.2
Related: RHELPLAN-39206
[1.9.1-2]
make container-selinux a soft dependency
Related: #1806044
[1.9.1-1]
update to
https://github.com/containers/libpod/releases/tag/v1.9.1
Related: RHELPLAN-39206
[1.9.0-2]
remove containers-mounts.conf man page, this is shipped by skopeo: containers-common subpackage
Related: RHELPLAN-39206
[1.9.0-1]
update to
https://github.com/containers/libpod/releases/tag/v1.9.0
Related: RHELPLAN-39206
python-podman-api
[1.2.0-0.2.gitd0a45fe]
revert update to 1.6.0 due to new python3-pbr dependency which
is not in RHEL
Related: RHELPLAN-25139
[1.2.0-0.1.gitd0a45fe]
Initial package
runc
[1.0.0-66.rc10]
drop container-selinux runtime dependency
Related: #1806044
[1.0.0-65.rc10]
address CVE-2019-19921 by updating to rc10
Resolves: #1801887
[1.0.0-64.rc9]
use no_openssl in BUILDTAGS (no vendored crypto in runc)
Related: RHELPLAN-25139
[1.0.0-63.rc9]
be sure to use golang >= 1.12.12-4
Related: RHELPLAN-25139
[1.0.0-62.rc9]
rebuild because of CVE-2019-9512 and CVE-2019-9514
Resolves: #1766331, #1766303
[1.0.0-61.rc9]
update to runc 1.0.0-rc9 release
amend golang deps
fixes CVE-2019-16884
Resolves: #1759651
[1.0.0-60.rc8]
Resolves: #1721247 - enable fips mode
[1.0.0-59.rc8]
Resolves: #1720654 - rebase to v1.0.0-rc8
[1.0.0-57.rc5.dev.git2abd837]
Resolves: #1693424 - podman rootless: cannot specify gid= mount options
[1.0.0-56.rc5.dev.git2abd837]
change-default-root patch not needed as theres no docker on rhel8
[1.0.0-55.rc5.dev.git2abd837]
Resolves: CVE-2019-5736
[1.0.0-54.rc5.dev.git2abd837]
re-enable debuginfo
[1.0.0-53.rc5.dev.git2abd837]
go toolset not in scl anymore
[1.0.0-52.rc5.dev.git2abd837]
rebase
skopeo
[1:1.0.0-1.0.1]
Add oracle registry into the conf file [Orabug: 29845934 31306708]
Fix oracle registry login issues [Orabug: 29937192]
[1:1.0.0-1]
update to
https://github.com/containers/skopeo/releases/tag/v1.0.0
Related: RHELPLAN-39206
[1:0.2.0-5]
follow Dans suggestion to deliver seccomp.json and storage.conf
from Fedora and not directly from upstream yet
Related: RHELPLAN-39206
[1:0.2.0-4]
re-include ppc64 arch, golang doesnt seem broken there any more
synchronize man pages and config files with upstream
Related: RHELPLAN-39206
[1:0.2.0-3]
include and ship containers.conf
Resolves: #1826486
[1:0.2.0-2]
add
docker.io
into the default registry list
Related: RHELPLAN-39206
[1:0.2.0-1]
update to
https://github.com/containers/skopeo/releases/tag/v0.2.0
initial rhel8-8.2.1 build
Related: RHELPLAN-39206
slirp4netns
[1.0.1-1]
update to
https://github.com/rootless-containers/slirp4netns/archive/v1.0.1.tar.gz
Related: RHELPLAN-39206
[0.4.3-1]
update to
https://github.com/rootless-containers/slirp4netns/archive/v0.4.3.tar.gz
Related: RHELPLAN-39206
Affected Package
OS
Version
Architecture
Package
Version
Filename
oracle linux
8
src
buildah
< 1.14.9-1.0.1.module
buildah-1.14.9-1.0.1.module+el8.2.1+7658+86e51d52.src.rpm
oracle linux
8
src
cockpit-podman
< 17-1.module
cockpit-podman-17-1.module+el8.2.1+7658+86e51d52.src.rpm
oracle linux
8
src
conmon
< 2.0.17-1.0.1.module
conmon-2.0.17-1.0.1.module+el8.2.1+7658+86e51d52.src.rpm
oracle linux
8
src
container-selinux
< 2.135.0-1.module
container-selinux-2.135.0-1.module+el8.2.1+7658+86e51d52.src.rpm
oracle linux
8
src
containernetworking-plugins
< 0.8.6-1.module
containernetworking-plugins-0.8.6-1.module+el8.2.1+7658+86e51d52.src.rpm
oracle linux
8
src
criu
< 3.14-2.module
criu-3.14-2.module+el8.2.1+7658+86e51d52.src.rpm
oracle linux
8
src
fuse-overlayfs
< 1.0.0-2.module
fuse-overlayfs-1.0.0-2.module+el8.2.1+7658+86e51d52.src.rpm
oracle linux
8
src
libslirp
< 4.3.0-3.module
libslirp-4.3.0-3.module+el8.2.1+7658+86e51d52.src.rpm
oracle linux
8
src
podman
< 1.9.3-2.0.1.module
podman-1.9.3-2.0.1.module+el8.2.1+7658+86e51d52.src.rpm
oracle linux
8
src
python-podman-api
< 1.2.0-0.2.gitd0a45fe.module
python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+7658+86e51d52.src.rpm
Rows per page:
10
1-10 of 74
1
Related
gentoo 1
almalinux 2
nessus 66
osv 17
redhat 19
oraclelinux 6
rocky 2
altlinux 4
ibm 10
openvas 27
fedora 4
ubuntu 2
amazon 3
freebsd 3
mageia 3
debian 5
suse 7
archlinux 2
arista 1
github 2
prion 2
veracode 1
apple 1
nvd 2
debiancve 2
redhatcve 1
alpinelinux 1
cve 1
gitlab 1
ubuntucve 1
gentoo
gentoo
runC: Multiple vulnerabilities
2020-03-15 00:00:00
almalinux
almalinux
Important: container-tools:rhel8 security and bug fix update
2019-12-17 09:19:28
Important: container-tools:1.0 security update
2019-12-17 09:20:02
nessus
nessus
66
GLSA-202003-21 : runC: Multiple vulnerabilities
2020-03-16 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : containerd.io Multiple Vulnerabilities (NS-SA-2021-0006)
2021-03-10 00:00:00
Oracle Linux 8 : container-tools:ol8 (ELSA-2019-4269) (Ping Flood) (Reset Flood)
2020-01-06 00:00:00
osv
osv
17
Important: container-tools:rhel8 security and bug fix update
2019-12-17 09:19:28
Important: container-tools:rhel8 security and bug fix update
2019-12-17 09:19:28
Reset flood in net/http and golang.org/x/net/http
2022-08-01 22:20:53
redhat
redhat
19
(RHSA-2019:4269) Important: container-tools:rhel8 security and bug fix update
2019-12-17 09:19:28
(RHSA-2019:4273) Important: container-tools:1.0 security update
2019-12-17 09:20:02
(RHSA-2019:2726) Important: go-toolset:rhel8 security and bug fix update
2019-09-10 10:40:48
oraclelinux
oraclelinux
6
container-tools:ol8 security and bug fix update
2020-04-15 00:00:00
container-tools:ol8 security and bug fix update
2020-01-03 00:00:00
go-toolset:rhel8 security and bug fix update
2019-09-17 00:00:00
rocky
rocky
container-tools:rhel8 security and bug fix update
2019-12-17 09:19:28
container-tools:1.0 security update
2019-12-17 09:20:02
altlinux
altlinux
4
Security fix for the ALT Linux 10 package kubernetes version 1.15.3-alt1
2019-09-26 00:00:00
Security fix for the ALT Linux 10 package traefik version 1.7.14-alt1
2019-08-23 00:00:00
Security fix for the ALT Linux 10 package golang version 1.12.9-alt1
2019-08-19 00:00:00
ibm
ibm
10
Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - Go (CVE-2019-9512, CVE-2019-9514)
2019-11-23 15:51:35
Security Bulletin: IBM Cloud Kubernetes Service is affected by Kubernetes security vulnerabilities (CVE-2019-9512, CVE-2019-9514)
2019-09-04 10:55:08
Security Bulletin: IBM MQ Certified Container is vulnerable to multiple vulnerabilities in Golang (CVE-2019-9512, CVE-2019-9514)
2019-12-19 15:33:23
openvas
openvas
27
Fedora: Security Advisory for runc (FEDORA-2020-b2c1f6cc75)
2020-02-08 00:00:00
Ubuntu: Security Advisory (USN-4297-1)
2020-03-10 00:00:00
Mageia: Security Advisory (MGASA-2020-0468)
2022-01-28 00:00:00
fedora
fedora
4
[SECURITY] Fedora 30 Update: runc-1.0.0-102.dev.gitdc9208a.fc30
2020-02-08 01:40:01
[SECURITY] Fedora 30 Update: golang-1.12.9-1.fc30
2019-09-06 12:35:05
[SECURITY] Fedora 30 Update: golang-1.12.10-1.fc30
2019-10-09 16:54:30
ubuntu
ubuntu
runC vulnerabilities
2020-03-09 00:00:00
Netty vulnerabilities
2021-06-29 00:00:00
amazon
amazon
Important: golang
2019-08-23 03:20:00
Important: golang
2019-08-23 16:58:00
Medium: runc
2020-04-20 18:58:00
freebsd
freebsd
traefik -- Denial of service in HTTP/2
2019-08-13 00:00:00
h2o -- multiple HTTP/2 vulnerabilities
2019-08-13 00:00:00
h2o -- multiple HTTP/2 vulnerabilities
2019-08-13 00:00:00
mageia
mageia
Updated golang-googlecode-net package fixes security vulnerabilities
2020-12-22 00:47:06
Updated golang packages fix security vulnerabilities
2019-09-07 00:09:08
Updated opencontainers-runc packages fix security vulnerability
2020-02-26 13:21:01
debian
debian
5
[SECURITY] [DLA 2485-1] golang-golang-x-net-dev security update
2020-12-08 22:15:45
[SECURITY] [DSA 4508-1] h2o security update
2019-08-24 14:44:01
[SECURITY] [DSA 4503-1] golang-1.11 security update
2019-08-18 18:25:11
suse
suse
7
Security update for go1.12 (moderate)
2019-09-07 00:00:00
Security update for go1.12 (moderate)
2019-09-14 00:00:00
Security update for go1.12 (moderate)
2019-09-02 00:00:00
archlinux
archlinux
[ASA-201908-15] go: multiple issues
2019-08-24 00:00:00
[ASA-201908-16] go-pie: multiple issues
2019-08-24 00:00:00
arista
arista
Security Advisory 0043
2019-11-06 00:00:00
github
github
HTTP/2 DoS Attacks: Ping, Reset, and Settings Floods
2022-03-14 22:45:11
opencontainers runc contains procfs race condition with a shared volume mount
2021-05-27 18:41:17
prion
prion
Improper access control
2020-02-12 15:15:00
Design/Logic Flaw
2019-09-25 18:15:00
veracode
veracode
Sandbox Restrictions Bypass
2020-01-16 05:48:35
apple
apple
About the security content of SwiftNIO HTTP/2 1.5.0 - Apple Support
2019-08-13 06:09:21
nvd
nvd
CVE-2019-16884
2019-09-25 18:15:13
CVE-2019-19921
2020-02-12 15:15:12
debiancve
debiancve
CVE-2019-16884
2019-09-25 18:15:13
CVE-2019-19921
2020-02-12 15:15:12
redhatcve
redhatcve
CVE-2019-19921
2020-01-29 16:31:25
alpinelinux
alpinelinux
CVE-2019-19921
2020-02-12 15:15:12
cve
cve
CVE-2019-19921
2020-02-12 15:15:12
gitlab
gitlab
Allocation of Resources Without Limits or Throttling
2022-05-24 00:00:00
ubuntucve
ubuntucve
CVE-2019-19921
2020-02-12 00:00:00
0.821 High
EPSS
Percentile
98.4%
JSON
Related for ELSA-2020-3053
gentoo
1
almalinux
2
nessus
66
osv
17
redhat
19
oraclelinux
6
rocky
2
altlinux
4
ibm
10
openvas
27
fedora
4
ubuntu
2
amazon
3
freebsd
3
mageia
3
debian
5
suse
7
archlinux
2
arista
1
github
2
prion
2
veracode
1
apple
1
nvd
2
debiancve
2
redhatcve
1
alpinelinux
1
cve
1
gitlab
1
ubuntucve
1