Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseOPENSUSE-SU-2021:1954-1
HistoryJul 10, 2021 - 12:00 a.m.

Security update for containerd, docker, runc (important)

2021-07-1000:00:00
lists.opensuse.org
42

0.006 Low

EPSS

Percentile

77.7%

JSON

An update that solves four vulnerabilities and has 13 fixes
is now available.

Description:

This update for containerd, docker, runc fixes the following issues:

Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594)

  • Switch version to use -ce suffix rather than _ce to avoid confusing
    other tools (bsc#1182476).
  • CVE-2021-21284: Fixed a potential privilege escalation when the root
    user in the remapped namespace has access to the host filesystem
    (bsc#1181732)
  • CVE-2021-21285: Fixed an issue where pulling a malformed Docker image
    manifest crashes the dockerd daemon (bsc#1181730).
  • btrfs quotas being removed by Docker regularly (bsc#1183855, bsc#1175081)

runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962).

  • Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821).
  • Fixed /dev/null is not available (bsc#1168481).
  • CVE-2021-30465: Fixed a symlink-exchange attack vulnarability
    (bsc#1185405).

containerd was updated to v1.4.4

  • CVE-2021-21334: Fixed a potential information leak through environment
    variables (bsc#1183397).
  • Handle a requirement from docker (bsc#1181594).

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

  • openSUSE Leap 15.3:

    zypper in -t patch openSUSE-SLE-15.3-2021-1954=1

OSVersionArchitecturePackageVersionFilename
openSUSE Leap15.3aarch64< - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.aarch64.rpm
openSUSE Leap15.3ppc64le< - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.ppc64le.rpm
openSUSE Leap15.3s390x< - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.s390x.rpm
openSUSE Leap15.3x86_64< - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):- openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.x86_64.rpm
openSUSE Leap15.3noarch< - openSUSE Leap 15.3 (noarch):- openSUSE Leap 15.3 (noarch):.noarch.rpm

Related

nessus 61
openvas 24
suse 2
ibm 9
gentoo 2
archlinux 2
amazon 2
debian 1
osv 15
fedora 5
veracode 4
ubuntu 2
prion 4
cbl_mariner 8
alpinelinux 4
redhatcve 4
github 4
cvelist 4
cve 4
ubuntucve 3
mageia 2
nvd 4
debiancve 4
cgr 1
rocky 3
redhat 9
almalinux 2
wolfi 1
oraclelinux 5
altlinux 1
photon 2
f5 1
nessus
nessus
SUSE SLES15 Security Update : containerd, docker, runc (SUSE-SU-2021:1954-1)
2021-06-12 00:00:00
openSUSE 15 Security Update : containerd, docker, runc (openSUSE-SU-2021:1954-1)
2021-07-16 00:00:00
openSUSE 15 Security Update : containerd, docker, runc (openSUSE-SU-2021:0878-1)
2021-06-28 00:00:00
openvas
openvas
openSUSE: Security Advisory for containerd, (openSUSE-SU-2021:0878-1)
2021-06-17 00:00:00
openSUSE: Security Advisory for containerd, (openSUSE-SU-2021:1954-1)
2021-07-13 00:00:00
Docker < 19.03.15, 20.x < 20.10.3 Multiple Vulnerabilities
2021-02-08 00:00:00
suse
suse
Security update for containerd, docker, runc (important)
2021-06-16 00:00:00
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (important)
2021-02-12 00:00:00
ibm
ibm
Security Bulletin: IBM Cloud Pak for Multicloud Management Managed Service Content Runtime is affected by an issue with Docker before 19.03.15.
2021-04-22 14:38:16
Security Bulletin: Vulnerabilities in Docker affect IBM Cloud Pak System
2021-07-19 12:21:34
Security Bulletin: IBM Cloud Automation Manager Content Runtime is affected by an issue with Docker before 19.03.15.
2021-04-22 14:39:14
gentoo
gentoo
Docker: Multiple vulnerabilities
2021-07-10 00:00:00
runC: Container breakout
2021-07-10 00:00:00
archlinux
archlinux
[ASA-202102-12] docker: multiple issues
2021-02-06 00:00:00
[ASA-202105-17] runc: sandbox escape
2021-05-25 00:00:00
amazon
amazon
Medium: docker
2021-11-11 20:21:00
Important: runc
2021-05-14 16:52:00
debian
debian
[SECURITY] [DSA 4865-1] docker.io security update
2021-02-27 18:36:39
osv
osv
docker.io - security update
2021-02-27 00:00:00
CVE-2021-21285
2021-02-02 18:15:12
moby docker daemon crash during image pull of malicious image
2024-01-31 23:16:46
fedora
fedora
[SECURITY] Fedora 34 Update: golang-github-containerd-cri-1.19.0-3.20210307gitaa2d5a9.fc34
2021-03-19 20:29:10
[SECURITY] Fedora 33 Update: runc-1.0.0-378.rc95.fc33
2021-05-28 01:11:36
[SECURITY] Fedora 33 Update: containerd-1.4.4-1.fc33
2021-03-15 01:20:25
veracode
veracode
Information Disclosure
2021-03-05 23:36:17
Privilege Escalation
2021-02-09 12:44:09
Denial Of Service (DoS)
2021-02-03 05:31:47
ubuntu
ubuntu
containerd vulnerability
2021-03-17 00:00:00
runC vulnerability
2021-05-19 00:00:00
prion
prion
Design/Logic Flaw
2021-03-10 22:15:00
Privilege escalation
2021-02-02 18:15:00
Code injection
2021-02-02 18:15:00
cbl_mariner
cbl_mariner
CVE-2021-21284 affecting package moby-cli 19.03.15-2
2021-07-08 21:57:06
CVE-2021-21285 affecting package moby-engine 19.03.15-2
2021-07-08 21:56:37
CVE-2021-21285 affecting package moby-cli 19.03.15-2
2021-07-08 21:57:06
alpinelinux
alpinelinux
CVE-2021-21284
2021-02-02 18:15:11
CVE-2021-21285
2021-02-02 18:15:12
CVE-2021-21334
2021-03-10 22:15:12
redhatcve
redhatcve
CVE-2021-21285
2021-02-03 20:04:18
CVE-2021-21334
2021-03-11 20:01:14
CVE-2021-21284
2021-02-03 20:04:15
github
github
moby Access to remapped root allows privilege escalation to real root
2024-01-31 23:14:25
moby docker daemon crash during image pull of malicious image
2024-01-31 23:16:46
containerd environment variable leak
2024-01-31 23:22:45
cvelist
cvelist
CVE-2021-21284 privilege escalation in Moby
2021-02-02 17:55:22
CVE-2021-30465
2021-05-27 00:00:00
CVE-2021-21285 Docker daemon crash during image pull of malicious image
2021-02-02 17:55:16
cve
cve
CVE-2021-21284
2021-02-02 18:15:11
CVE-2021-21285
2021-02-02 18:15:12
CVE-2021-21334
2021-03-10 22:15:12
ubuntucve
ubuntucve
CVE-2021-21285
2021-02-02 00:00:00
CVE-2021-21334
2021-03-05 00:00:00
CVE-2021-21284
2021-02-02 00:00:00
mageia
mageia
Updated docker-containerd packages fix security vulnerability
2021-06-14 00:32:39
Updated opencontainers-runc packages fix security vulnerability
2021-08-27 18:29:51
nvd
nvd
CVE-2021-21284
2021-02-02 18:15:11
CVE-2021-21334
2021-03-10 22:15:12
CVE-2021-30465
2021-05-27 13:15:08
debiancve
debiancve
CVE-2021-21284
2021-02-02 18:15:11
CVE-2021-21285
2021-02-02 18:15:12
CVE-2021-30465
2021-05-27 13:15:08
cgr
cgr
CVE-2021-21334 vulnerabilities
2024-05-19 03:07:16
rocky
rocky
container-tools:2.0 security update
2021-06-08 11:20:15
container-tools:rhel8 security update
2021-06-10 07:45:39
container-tools:3.0 security update
2021-06-10 07:45:37
redhat
redhat
(RHSA-2021:1562) Important: OpenShift Container Platform 4.7.12 packages and security update
2021-05-24 16:33:53
(RHSA-2021:2291) Important: container-tools:2.0 security update
2021-06-08 11:20:15
(RHSA-2021:2292) Important: container-tools:2.0 security update
2021-06-08 11:20:29
almalinux
almalinux
Important: container-tools:3.0 security update
2021-06-10 07:45:37
Important: container-tools:2.0 security update
2021-06-08 11:20:15
wolfi
wolfi
CVE-2021-21334 vulnerabilities
2024-07-03 09:08:38
oraclelinux
oraclelinux
runc security update
2021-06-11 00:00:00
runc security update
2021-06-11 00:00:00
container-tools:3.0 security update
2021-06-14 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package runc version 1.0.0-alt17.rc95
2021-06-18 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2021-0228
2021-04-30 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0388
2021-05-19 00:00:00
f5
f5
K33820305 : runc vulnerability CVE-2021-30465
2021-07-12 00:00:00

0.006 Low

EPSS

Percentile

77.7%

JSON
Related for OPENSUSE-SU-2021:1954-1
nessus61openvas24suse2ibm9gentoo2archlinux2amazon2debian1osv15fedora5veracode4ubuntu2prion4cbl_mariner8alpinelinux4redhatcve4github4cvelist4cve4ubuntucve3mageia2nvd4debiancve4cgr1rocky3redhat9almalinux2wolfi1oraclelinux5altlinux1photon2f51