SUSE-SU-2022:1689-1

Details

Description of the patch:

This update for containerd, docker fixes the following issues:

CVE-2022-24769: Fixed incorrect default inheritable capabilities (bsc#1197517).
CVE-2022-23648: Fixed directory traversal issue (bsc#1196441).
CVE-2022-27191: Fixed a crash in a golang.org/x/crypto/ssh server (bsc#1197284).
CVE-2021-43565: Fixed a panic in golang.org/x/crypto by empty plaintext packet (bsc#1193930).

Affected Packages(11 packages)

containerd

SUSE Enterprise Storage 6SUSE Enterprise Storage 7SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15SUSE Linux Enterprise High Performance Computing 15 SP1

Fixed in:

1.5.11-150000.68.1

containerd-ctr

SUSE Enterprise Storage 6SUSE Enterprise Storage 7SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15SUSE Linux Enterprise High Performance Computing 15 SP1

Fixed in:

1.5.11-150000.68.1

docker

SUSE Enterprise Storage 6SUSE Enterprise Storage 7SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15SUSE Linux Enterprise High Performance Computing 15 SP1

Fixed in:

20.10.14_ce-150000.163.1

docker-bash-completion

SUSE Enterprise Storage 6SUSE Enterprise Storage 7SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15SUSE Linux Enterprise High Performance Computing 15 SP1

Fixed in:

20.10.14_ce-150000.163.1

docker-fish-completion

SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP3SUSE Linux Enterprise Module for Containers 15 SP3SUSE Linux Enterprise Server 15 SP3SUSE Linux Enterprise Server for SAP Applications 15 SP3

Fixed in:

20.10.14_ce-150000.163.1

docker-kubic

openSUSE Leap 15.3openSUSE Leap 15.4

Fixed in:

20.10.14_ce-150000.163.1

docker-kubic-bash-completion

openSUSE Leap 15.3openSUSE Leap 15.4

Fixed in:

20.10.14_ce-150000.163.1

docker-kubic-fish-completion

openSUSE Leap 15.3openSUSE Leap 15.4