Early Access — Mondoo Vulnerability Intelligence is currently in preview.

SUSE-SU-2024:2108-1

UNKNOWN

Security update for containerd

Published Jun 20, 2024

Modified 1 years ago

Fix available

Details

This update for containerd fixes the following issues:

Update to containerd v1.7.17.

CVE-2023-45288: Fixed the limit of CONTINUATION frames read for an HTTP/2 request (bsc#1221400).
Fixed /sys/devices/virtual/powercap accessibility by default containers to mitigate power-based side channel attacks (bsc#1224323).

Affected Packages

SUSE:Enterprise Storage 7.1containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Enterprise Storage 7.1containerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSScontainerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSScontainerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSScontainerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSScontainerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOScontainerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOScontainerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOScontainerd-devel

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSScontainerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSScontainerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSScontainerd-devel

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Micro 5.1containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Micro 5.2containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Micro 5.3containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Micro 5.4containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Micro 5.5containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Module for Containers 15 SP5containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Module for Containers 15 SP5containerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Module for Containers 15 SP5containerd-devel

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Module for Containers 15 SP6containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Module for Containers 15 SP6containerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Module for Containers 15 SP6containerd-devel

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server 15 SP2-LTSScontainerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server 15 SP2-LTSScontainerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server 15 SP3-LTSScontainerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server 15 SP3-LTSScontainerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server 15 SP4-LTSScontainerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server 15 SP4-LTSScontainerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server 15 SP4-LTSScontainerd-devel

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server for SAP Applications 15 SP2containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server for SAP Applications 15 SP2containerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server for SAP Applications 15 SP3containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server for SAP Applications 15 SP3containerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server for SAP Applications 15 SP4containerd

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server for SAP Applications 15 SP4containerd-ctr

Fixed in:

1.7.17-150000.111.3

SUSE:Linux Enterprise Server for SAP Applications 15 SP4containerd-devel

Fixed in:

1.7.17-150000.111.3

openSUSE:Leap 15.5containerd

Fixed in:

1.7.17-150000.111.3

openSUSE:Leap 15.5containerd-ctr

Fixed in:

1.7.17-150000.111.3

openSUSE:Leap 15.5containerd-devel

Fixed in:

1.7.17-150000.111.3

openSUSE:Leap 15.6containerd

Fixed in:

1.7.17-150000.111.3

openSUSE:Leap 15.6containerd-ctr

Fixed in:

1.7.17-150000.111.3

openSUSE:Leap 15.6containerd-devel

Fixed in:

1.7.17-150000.111.3

openSUSE:Leap Micro 5.3containerd

Fixed in:

1.7.17-150000.111.3

openSUSE:Leap Micro 5.4containerd

Fixed in:

1.7.17-150000.111.3

References

REPORThttps://bugzilla.suse.com/1221400 REPORThttps://bugzilla.suse.com/1224323 WEBhttps://www.suse.com/security/cve/CVE-2023-45288 ADVISORYhttps://www.suse.com/support/update/announcement/2024/suse-su-20242108-1/

Upstream

Related

Ecosystems

SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Micro 5.4 SUSE Linux Enterprise Micro 5.5 SUSE Linux Enterprise Module for Containers 15 SP5 SUSE Linux Enterprise Module for Containers 15 SP6 SUSE Linux Enterprise Server 15 SP2-LTSS SUSE Linux Enterprise Server 15 SP3-LTSS SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP4 openSUSE Leap 15.5 openSUSE Leap 15.6 openSUSE Leap Micro 5.3 openSUSE Leap Micro 5.4

Timeline

PublishedJun 20, 2024

ModifiedJun 20, 2024

SUSE-SU-2024:2108-1 | Mondoo Vulnerability Intelligence