ALSA-2022:7822

See a problem?
Please try reporting it to the source first.

Source

https://errata.almalinux.org/8/ALSA-2022-7822.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2022:7822.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2022:7822

Related

Published

2022-11-08T00:00:00Z

Modified

2023-01-03T12:15:28Z

Summary

Low: container-tools:rhel8 security, bug fix, and enhancement update

Details

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

Security Fix(es):

podman: possible information disclosure and modification (CVE-2022-2989)
buildah: possible information disclosure and modification (CVE-2022-2990)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

podman creates lock file in /etc/cni/net.d/cni.lock instead of /run/lock/ (BZ#2125644)
(podman image trust) does not support the new trust type "sigstoreSigned " (BZ#2125645)
podman kill may deadlock (BZ#2125647)
Error: runc: exec failed: unable to start container process: open /dev/pts/0: operation not permitted: OCI permission denied [AlmaLinux 8.7] (BZ#2125648)
containers-common-1-44 is missing RPM-GPG-KEY-AlmaLinux-beta [AlmaLinux 8.7] (BZ#2125686)
ADD Dockerfile reference is not validating HTTP status code [rhel8-8.7.0] (BZ#2129767)
Two aardvark-dns instances trying to use the same port on the same interface. [rhel-8.7.0.z] (netavark) (BZ#2130234)
containers config.json gets empty after sudden power loss (BZ#2130236)
PANIC podman API service endpoint handler panic (BZ#2132412)
Podman container got global IPv6 address unexpectedly even when macvlan network is created for pure IPv4 network (BZ#2133390)
Skopeo push image to AlmaLinux quay with sigstore was failed (BZ#2136406)
Podman push image to AlmaLinux quay with sigstore was failed (BZ#2136433)
Buildah push image to AlmaLinux quay with sigstore was failed (BZ#2136438)
Two aardvark-dns instances trying to use the same port on the same interface. [rhel-8.8] (aardvark-dns) (BZ#2137295)

Enhancement(s):

[RFE]Podman support to perform custom actions on unhealthy containers (BZ#2130911)
[RFE] python-podman: Podman support to perform custom actions on unhealthy containers (BZ#2132360)
Podman volume plugin timeout should be configurable (BZ#2132992)

References

Affected packages

AlmaLinux:8 / aardvark-dns

Package

Name: aardvark-dns

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:1.1.0-5.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / buildah

Package

Name: buildah

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.27.2-2.module_el8.7.0+3348+f3135399

AlmaLinux:8 / buildah-tests

Package

Name: buildah-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.27.2-2.module_el8.7.0+3348+f3135399

AlmaLinux:8 / cockpit-podman

Package

Name: cockpit-podman

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

53-1.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / conmon

Package

Name: conmon

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:2.1.4-1.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / container-selinux

Package

Name: container-selinux

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:2.189.0-1.module_el8.7.0+3407+95aa0ca9

AlmaLinux:8 / container-selinux

Package

Name: container-selinux

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:2.189.0-1.module_el8.7.0+3344+5bcd850f

AlmaLinux:8 / containernetworking-plugins

Package

Name: containernetworking-plugins

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1-3.module_el8.6.0+3070+1510fbd1

AlmaLinux:8 / containernetworking-plugins

Package

Name: containernetworking-plugins

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.1-3.module_el8.6.0+3128+1510fbd1

AlmaLinux:8 / containers-common

Package

Name: containers-common

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:1-43.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / crit

Package

Name: crit

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.15-3.module_el8.6.0+2751+06427ca3

AlmaLinux:8 / crit

Package

Name: crit

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.15-3.module_el8.7.0+3407+95aa0ca9

AlmaLinux:8 / criu

Package

Name: criu

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.15-3.module_el8.6.0+2751+06427ca3

AlmaLinux:8 / criu

Package

Name: criu

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.15-3.module_el8.7.0+3407+95aa0ca9

AlmaLinux:8 / criu-devel

Package

Name: criu-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.15-3.module_el8.7.0+3407+95aa0ca9

AlmaLinux:8 / criu-devel

Package

Name: criu-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.15-3.module_el8.6.0+2751+06427ca3

AlmaLinux:8 / criu-libs

Package

Name: criu-libs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.15-3.module_el8.6.0+2751+06427ca3

AlmaLinux:8 / criu-libs

Package

Name: criu-libs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.15-3.module_el8.7.0+3407+95aa0ca9

AlmaLinux:8 / crun

Package

Name: crun

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.5-1.module_el8.7.0+3407+95aa0ca9

AlmaLinux:8 / crun

Package

Name: crun

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.5-1.module_el8.6.0+3336+00d107d5

AlmaLinux:8 / fuse-overlayfs

Package

Name: fuse-overlayfs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.9-1.module_el8.7.0+3407+95aa0ca9

AlmaLinux:8 / fuse-overlayfs

Package

Name: fuse-overlayfs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.9-1.module_el8.6.0+3070+1510fbd1

AlmaLinux:8 / libslirp

Package

Name: libslirp

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.4.0-1.module_el8.6.0+2877+8e437bf5

AlmaLinux:8 / libslirp

Package

Name: libslirp

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.4.0-1.module_el8.7.0+3407+95aa0ca9

AlmaLinux:8 / libslirp-devel

Package

Name: libslirp-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.4.0-1.module_el8.6.0+2877+8e437bf5

AlmaLinux:8 / libslirp-devel

Package

Name: libslirp-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.4.0-1.module_el8.7.0+3407+95aa0ca9

AlmaLinux:8 / netavark

Package

Name: netavark

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:1.1.0-7.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / oci-seccomp-bpf-hook

Package

Name: oci-seccomp-bpf-hook

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.2.6-1.module_el8.6.0+3336+00d107d5

AlmaLinux:8 / podman

Package

Name: podman

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:4.2.0-4.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / podman-catatonit

Package

Name: podman-catatonit

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:4.2.0-4.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / podman-docker

Package

Name: podman-docker

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:4.2.0-4.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / podman-gvproxy

Package

Name: podman-gvproxy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:4.2.0-4.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / podman-plugins

Package

Name: podman-plugins

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:4.2.0-4.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / podman-remote

Package

Name: podman-remote

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:4.2.0-4.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / podman-tests

Package

Name: podman-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:4.2.0-4.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / python3-criu

Package

Name: python3-criu

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.15-3.module_el8.7.0+3407+95aa0ca9

AlmaLinux:8 / python3-criu

Package

Name: python3-criu

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.15-3.module_el8.6.0+2751+06427ca3

AlmaLinux:8 / python3-podman

Package

Name: python3-podman

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.2.1-1.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / runc

Package

Name: runc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.1.4-1.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / skopeo

Package

Name: skopeo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:1.9.3-1.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / skopeo-tests

Package

Name: skopeo-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:1.9.3-1.module_el8.7.0+3344+484dae7b

AlmaLinux:8 / slirp4netns

Package

Name: slirp4netns

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.2.0-2.module_el8.6.0+3070+1510fbd1

AlmaLinux:8 / slirp4netns

Package

Name: slirp4netns

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.2.0-2.module_el8.6.0+3128+1510fbd1

AlmaLinux:8 / toolbox

Package

Name: toolbox

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.99.3-0.6.module_el8.6.0+3070+1510fbd1

AlmaLinux:8 / toolbox

Package

Name: toolbox

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.99.3-0.6.module_el8.6.0+3128+1510fbd1

AlmaLinux:8 / toolbox-tests

Package

Name: toolbox-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.99.3-0.6.module_el8.6.0+3070+1510fbd1

AlmaLinux:8 / toolbox-tests

Package

Name: toolbox-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.0.99.3-0.6.module_el8.6.0+3128+1510fbd1

AlmaLinux:8 / udica

Package

Name: udica

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.2.6-3.module_el8.7.0+3344+484dae7b