{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"important"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2021-20188","title":"Title"},{"category":"description","text":"A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the container. It does not allow to directly escape the container, though being a privileged container means that a lot of security features are disabled when running the container. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2021-20188","url":"https://www.suse.com/security/cve/CVE-2021-20188"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1182068 for CVE-2021-20188","url":"https://bugzilla.suse.com/1182068"}],"title":"SUSE CVE CVE-2021-20188","tracking":{"current_release_date":"2026-01-16T01:05:45Z","generator":{"date":"2023-02-15T03:47:37Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2021-20188","initial_release_date":"2023-02-15T03:47:37Z","revision_history":[{"date":"2023-02-15T03:47:37Z","number":"2","summary":"Current version"},{"date":"2023-10-31T02:26:58Z","number":"3","summary":"Current version"},{"date":"2025-01-01T04:51:26Z","number":"4","summary":"Current version"},{"date":"2025-02-15T05:26:07Z","number":"5","summary":"Current version"},{"date":"2025-02-17T05:51:58Z","number":"6","summary":"Current version"},{"date":"2025-03-13T15:50:32Z","number":"7","summary":"Current version"},{"date":"2025-03-15T09:16:19Z","number":"8","summary":"Current version"},{"date":"2025-04-25T04:56:49Z","number":"9","summary":"Current version"},{"date":"2025-08-07T23:37:45Z","number":"10","summary":"Current version"},{"date":"2026-01-16T01:05:45Z","number":"11","summary":"more updates released"}],"status":"interim","version":"11"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE CaaS Platform 4.0","product":{"name":"SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0","product_identification_helper":{"cpe":"cpe:/o:suse:caasp:4.0"}}},{"category":"product_name","name":"SUSE Enterprise Storage 6","product":{"name":"SUSE Enterprise Storage 6","product_id":"SUSE Enterprise Storage 6","product_identification_helper":{"cpe":"cpe:/o:suse:ses:6"}}},{"category":"product_name","name":"SUSE Enterprise Storage 7","product":{"name":"SUSE Enterprise Storage 7","product_id":"SUSE Enterprise Storage 7","product_identification_helper":{"cpe":"cpe:/o:suse:ses:7"}}},{"category":"product_name","name":"SUSE Liberty Linux 8","product":{"name":"SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8","product_identification_helper":{"cpe":"cpe:/o:suse:sll:8"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP1","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP1","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc-ltss:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP2","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP2","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP2","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc:15:sp2"}}},{"category":"product_name","name":"SUSE Linux Enterprise Module for Containers 15 SP1","product":{"name":"SUSE Linux Enterprise Module for Containers 15 SP1","product_id":"SUSE Linux Enterprise Module for Containers 15 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sle-module-containers:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Module for Containers 15 SP2","product":{"name":"SUSE Linux Enterprise Module for Containers 15 SP2","product_id":"SUSE Linux Enterprise Module for Containers 15 SP2","product_identification_helper":{"cpe":"cpe:/o:suse:sle-module-containers:15:sp2"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP1","product":{"name":"SUSE Linux Enterprise Server 15 SP1","product_id":"SUSE Linux Enterprise Server 15 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sles:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP1-LTSS","product":{"name":"SUSE Linux Enterprise Server 15 SP1-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP1-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sles-ltss:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP2","product":{"name":"SUSE Linux Enterprise Server 15 SP2","product_id":"SUSE Linux Enterprise Server 15 SP2","product_identification_helper":{"cpe":"cpe:/o:suse:sles:15:sp2"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product":{"name":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product_id":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sles_bcl:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP1","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP1","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp1"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP2","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP2","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP2","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp2"}}},{"category":"product_name","name":"SUSE Manager Proxy 4.0","product":{"name":"SUSE Manager Proxy 4.0","product_id":"SUSE Manager Proxy 4.0","product_identification_helper":{"cpe":"cpe:/o:suse:suse-manager-proxy:4.0"}}},{"category":"product_name","name":"SUSE Manager Proxy 4.1","product":{"name":"SUSE Manager Proxy 4.1","product_id":"SUSE Manager Proxy 4.1","product_identification_helper":{"cpe":"cpe:/o:suse:suse-manager-proxy:4.1"}}},{"category":"product_name","name":"SUSE Manager Retail Branch Server 4.0","product":{"name":"SUSE Manager Retail Branch Server 4.0","product_id":"SUSE Manager Retail Branch Server 4.0","product_identification_helper":{"cpe":"cpe:/o:suse:suse-manager-retail-branch-server:4.0"}}},{"category":"product_name","name":"SUSE Manager Retail Branch Server 4.1","product":{"name":"SUSE Manager Retail Branch Server 4.1","product_id":"SUSE Manager Retail Branch Server 4.1","product_identification_helper":{"cpe":"cpe:/o:suse:suse-manager-retail-branch-server:4.1"}}},{"category":"product_name","name":"SUSE Manager Server 4.0","product":{"name":"SUSE Manager Server 4.0","product_id":"SUSE Manager Server 4.0","product_identification_helper":{"cpe":"cpe:/o:suse:suse-manager-server:4.0"}}},{"category":"product_name","name":"SUSE Manager Server 4.1","product":{"name":"SUSE Manager Server 4.1","product_id":"SUSE Manager Server 4.1","product_identification_helper":{"cpe":"cpe:/o:suse:suse-manager-server:4.1"}}},{"category":"product_version","name":"buildah-1.14.9-1.module+el8.2.1+6689+748e6520","product":{"name":"buildah-1.14.9-1.module+el8.2.1+6689+748e6520","product_id":"buildah-1.14.9-1.module+el8.2.1+6689+748e6520","product_identification_helper":{"cpe":"cpe:2.3:a:buildah_project:buildah:1.14.9:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/buildah-1.14.9-1.module+el8.2.1+6689+748e6520@"}}},{"category":"product_version","name":"buildah-tests-1.14.9-1.module+el8.2.1+6689+748e6520","product":{"name":"buildah-tests-1.14.9-1.module+el8.2.1+6689+748e6520","product_id":"buildah-tests-1.14.9-1.module+el8.2.1+6689+748e6520","product_identification_helper":{"purl":"pkg:rpm/suse/buildah-tests-1.14.9-1.module+el8.2.1+6689+748e6520@"}}},{"category":"product_version","name":"cockpit-podman-17-1.module+el8.2.1+6636+bf4db4ab","product":{"name":"cockpit-podman-17-1.module+el8.2.1+6636+bf4db4ab","product_id":"cockpit-podman-17-1.module+el8.2.1+6636+bf4db4ab","product_identification_helper":{"purl":"pkg:rpm/suse/cockpit-podman-17-1.module+el8.2.1+6636+bf4db4ab@"}}},{"category":"product_version","name":"conmon-2.0.17-1.module+el8.2.1+6771+3533eb4c","product":{"name":"conmon-2.0.17-1.module+el8.2.1+6771+3533eb4c","product_id":"conmon-2.0.17-1.module+el8.2.1+6771+3533eb4c","product_identification_helper":{"purl":"pkg:rpm/suse/conmon-2.0.17-1.module+el8.2.1+6771+3533eb4c@"}}},{"category":"product_version","name":"container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a","product":{"name":"container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a","product_id":"container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a","product_identification_helper":{"purl":"pkg:rpm/suse/container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a@"}}},{"category":"product_version","name":"containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4","product":{"name":"containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4","product_id":"containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4","product_identification_helper":{"purl":"pkg:rpm/suse/containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4@"}}},{"category":"product_version","name":"containers-common-1.0.0-1.module+el8.2.1+6676+604e1b26","product":{"name":"containers-common-1.0.0-1.module+el8.2.1+6676+604e1b26","product_id":"containers-common-1.0.0-1.module+el8.2.1+6676+604e1b26","product_identification_helper":{"purl":"pkg:rpm/suse/containers-common-1.0.0-1.module+el8.2.1+6676+604e1b26@"}}},{"category":"product_version","name":"crit-3.14-2.module+el8.2.1+6750+e53a300c","product":{"name":"crit-3.14-2.module+el8.2.1+6750+e53a300c","product_id":"crit-3.14-2.module+el8.2.1+6750+e53a300c","product_identification_helper":{"purl":"pkg:rpm/suse/crit-3.14-2.module+el8.2.1+6750+e53a300c@"}}},{"category":"product_version","name":"criu-3.14-2.module+el8.2.1+6750+e53a300c","product":{"name":"criu-3.14-2.module+el8.2.1+6750+e53a300c","product_id":"criu-3.14-2.module+el8.2.1+6750+e53a300c","product_identification_helper":{"cpe":"cpe:2.3:a:criu:checkpoint\\/restore_in_userspace:3.14:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/criu-3.14-2.module+el8.2.1+6750+e53a300c@"}}},{"category":"product_version","name":"fuse-overlayfs-1.0.0-2.module+el8.2.1+6465+1a51e8b6","product":{"name":"fuse-overlayfs-1.0.0-2.module+el8.2.1+6465+1a51e8b6","product_id":"fuse-overlayfs-1.0.0-2.module+el8.2.1+6465+1a51e8b6","product_identification_helper":{"purl":"pkg:rpm/suse/fuse-overlayfs-1.0.0-2.module+el8.2.1+6465+1a51e8b6@"}}},{"category":"product_version","name":"libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91","product":{"name":"libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91","product_id":"libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91","product_identification_helper":{"cpe":"cpe:2.3:a:libslirp_project:libslirp:4.3.0:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91@"}}},{"category":"product_version","name":"libslirp-devel-4.3.0-3.module+el8.2.1+6816+bedf4f91","product":{"name":"libslirp-devel-4.3.0-3.module+el8.2.1+6816+bedf4f91","product_id":"libslirp-devel-4.3.0-3.module+el8.2.1+6816+bedf4f91","product_identification_helper":{"purl":"pkg:rpm/suse/libslirp-devel-4.3.0-3.module+el8.2.1+6816+bedf4f91@"}}},{"category":"product_version","name":"oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+10171+12421f43","product":{"name":"oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+10171+12421f43","product_id":"oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+10171+12421f43","product_identification_helper":{"purl":"pkg:rpm/suse/oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+10171+12421f43@"}}},{"category":"product_version","name":"oci-umount-2.3.4-2.git87f9237.module+el8.3.0+10171+12421f43","product":{"name":"oci-umount-2.3.4-2.git87f9237.module+el8.3.0+10171+12421f43","product_id":"oci-umount-2.3.4-2.git87f9237.module+el8.3.0+10171+12421f43","product_identification_helper":{"purl":"pkg:rpm/suse/oci-umount-2.3.4-2.git87f9237.module+el8.3.0+10171+12421f43@"}}},{"category":"product_version","name":"podman","product":{"name":"podman","product_id":"podman","product_identification_helper":{"cpe":"cpe:2.3:a:podman_project:podman:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/podman@?upstream=podman.src.rpm"}}},{"category":"product_version","name":"podman-1.9.3-2.module+el8.2.1+6867+366c07d6","product":{"name":"podman-1.9.3-2.module+el8.2.1+6867+366c07d6","product_id":"podman-1.9.3-2.module+el8.2.1+6867+366c07d6","product_identification_helper":{"cpe":"cpe:2.3:a:podman_project:podman:1.9.3:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/podman-1.9.3-2.module+el8.2.1+6867+366c07d6@"}}},{"category":"product_version","name":"podman-cni-config","product":{"name":"podman-cni-config","product_id":"podman-cni-config","product_identification_helper":{"cpe":"cpe:2.3:a:podman_project:podman:*:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/podman-cni-config@?upstream=podman.src.rpm"}}},{"category":"product_version","name":"podman-docker-1.9.3-2.module+el8.2.1+6867+366c07d6","product":{"name":"podman-docker-1.9.3-2.module+el8.2.1+6867+366c07d6","product_id":"podman-docker-1.9.3-2.module+el8.2.1+6867+366c07d6","product_identification_helper":{"purl":"pkg:rpm/suse/podman-docker-1.9.3-2.module+el8.2.1+6867+366c07d6@"}}},{"category":"product_version","name":"podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6","product":{"name":"podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6","product_id":"podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6","product_identification_helper":{"purl":"pkg:rpm/suse/podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6@"}}},{"category":"product_version","name":"podman-tests-1.9.3-2.module+el8.2.1+6867+366c07d6","product":{"name":"podman-tests-1.9.3-2.module+el8.2.1+6867+366c07d6","product_id":"podman-tests-1.9.3-2.module+el8.2.1+6867+366c07d6","product_identification_helper":{"purl":"pkg:rpm/suse/podman-tests-1.9.3-2.module+el8.2.1+6867+366c07d6@"}}},{"category":"product_version","name":"python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+6465+1a51e8b6","product":{"name":"python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+6465+1a51e8b6","product_id":"python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+6465+1a51e8b6","product_identification_helper":{"purl":"pkg:rpm/suse/python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+6465+1a51e8b6@"}}},{"category":"product_version","name":"python3-criu-3.14-2.module+el8.2.1+6750+e53a300c","product":{"name":"python3-criu-3.14-2.module+el8.2.1+6750+e53a300c","product_id":"python3-criu-3.14-2.module+el8.2.1+6750+e53a300c","product_identification_helper":{"purl":"pkg:rpm/suse/python3-criu-3.14-2.module+el8.2.1+6750+e53a300c@"}}},{"category":"product_version","name":"runc-1.0.0-66.rc10.module+el8.2.1+6465+1a51e8b6","product":{"name":"runc-1.0.0-66.rc10.module+el8.2.1+6465+1a51e8b6","product_id":"runc-1.0.0-66.rc10.module+el8.2.1+6465+1a51e8b6","product_identification_helper":{"cpe":"cpe:2.3:a:linuxfoundation:runc:1.0.0:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/runc-1.0.0-66.rc10.module+el8.2.1+6465+1a51e8b6@"}}},{"category":"product_version","name":"skopeo-1.0.0-1.module+el8.2.1+6676+604e1b26","product":{"name":"skopeo-1.0.0-1.module+el8.2.1+6676+604e1b26","product_id":"skopeo-1.0.0-1.module+el8.2.1+6676+604e1b26","product_identification_helper":{"purl":"pkg:rpm/suse/skopeo-1.0.0-1.module+el8.2.1+6676+604e1b26@"}}},{"category":"product_version","name":"skopeo-tests-1.0.0-1.module+el8.2.1+6676+604e1b26","product":{"name":"skopeo-tests-1.0.0-1.module+el8.2.1+6676+604e1b26","product_id":"skopeo-tests-1.0.0-1.module+el8.2.1+6676+604e1b26","product_identification_helper":{"purl":"pkg:rpm/suse/skopeo-tests-1.0.0-1.module+el8.2.1+6676+604e1b26@"}}},{"category":"product_version","name":"slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72","product":{"name":"slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72","product_id":"slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72","product_identification_helper":{"cpe":"cpe:2.3:a:libslirp_project:libslirp:1.0.1:*:*:*:*:*:*:*","purl":"pkg:rpm/suse/slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72@"}}},{"category":"product_version","name":"toolbox-0.0.7-1.module+el8.2.1+6465+1a51e8b6","product":{"name":"toolbox-0.0.7-1.module+el8.2.1+6465+1a51e8b6","product_id":"toolbox-0.0.7-1.module+el8.2.1+6465+1a51e8b6","product_identification_helper":{"purl":"pkg:rpm/suse/toolbox-0.0.7-1.module+el8.2.1+6465+1a51e8b6@"}}},{"category":"product_version","name":"udica-0.2.1-2.module+el8.2.1+6465+1a51e8b6","product":{"name":"udica-0.2.1-2.module+el8.2.1+6465+1a51e8b6","product_id":"udica-0.2.1-2.module+el8.2.1+6465+1a51e8b6","product_identification_helper":{"purl":"pkg:rpm/suse/udica-0.2.1-2.module+el8.2.1+6465+1a51e8b6@"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"buildah-1.14.9-1.module+el8.2.1+6689+748e6520 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:buildah-1.14.9-1.module+el8.2.1+6689+748e6520"},"product_reference":"buildah-1.14.9-1.module+el8.2.1+6689+748e6520","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"buildah-tests-1.14.9-1.module+el8.2.1+6689+748e6520 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:buildah-tests-1.14.9-1.module+el8.2.1+6689+748e6520"},"product_reference":"buildah-tests-1.14.9-1.module+el8.2.1+6689+748e6520","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"cockpit-podman-17-1.module+el8.2.1+6636+bf4db4ab as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:cockpit-podman-17-1.module+el8.2.1+6636+bf4db4ab"},"product_reference":"cockpit-podman-17-1.module+el8.2.1+6636+bf4db4ab","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"conmon-2.0.17-1.module+el8.2.1+6771+3533eb4c as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:conmon-2.0.17-1.module+el8.2.1+6771+3533eb4c"},"product_reference":"conmon-2.0.17-1.module+el8.2.1+6771+3533eb4c","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a"},"product_reference":"container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4"},"product_reference":"containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"containers-common-1.0.0-1.module+el8.2.1+6676+604e1b26 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:containers-common-1.0.0-1.module+el8.2.1+6676+604e1b26"},"product_reference":"containers-common-1.0.0-1.module+el8.2.1+6676+604e1b26","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"crit-3.14-2.module+el8.2.1+6750+e53a300c as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:crit-3.14-2.module+el8.2.1+6750+e53a300c"},"product_reference":"crit-3.14-2.module+el8.2.1+6750+e53a300c","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"criu-3.14-2.module+el8.2.1+6750+e53a300c as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:criu-3.14-2.module+el8.2.1+6750+e53a300c"},"product_reference":"criu-3.14-2.module+el8.2.1+6750+e53a300c","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"fuse-overlayfs-1.0.0-2.module+el8.2.1+6465+1a51e8b6 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:fuse-overlayfs-1.0.0-2.module+el8.2.1+6465+1a51e8b6"},"product_reference":"fuse-overlayfs-1.0.0-2.module+el8.2.1+6465+1a51e8b6","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91"},"product_reference":"libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"libslirp-devel-4.3.0-3.module+el8.2.1+6816+bedf4f91 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:libslirp-devel-4.3.0-3.module+el8.2.1+6816+bedf4f91"},"product_reference":"libslirp-devel-4.3.0-3.module+el8.2.1+6816+bedf4f91","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+10171+12421f43 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+10171+12421f43"},"product_reference":"oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+10171+12421f43","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"oci-umount-2.3.4-2.git87f9237.module+el8.3.0+10171+12421f43 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:oci-umount-2.3.4-2.git87f9237.module+el8.3.0+10171+12421f43"},"product_reference":"oci-umount-2.3.4-2.git87f9237.module+el8.3.0+10171+12421f43","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"podman-1.9.3-2.module+el8.2.1+6867+366c07d6 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:podman-1.9.3-2.module+el8.2.1+6867+366c07d6"},"product_reference":"podman-1.9.3-2.module+el8.2.1+6867+366c07d6","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"podman-docker-1.9.3-2.module+el8.2.1+6867+366c07d6 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:podman-docker-1.9.3-2.module+el8.2.1+6867+366c07d6"},"product_reference":"podman-docker-1.9.3-2.module+el8.2.1+6867+366c07d6","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6"},"product_reference":"podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"podman-tests-1.9.3-2.module+el8.2.1+6867+366c07d6 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:podman-tests-1.9.3-2.module+el8.2.1+6867+366c07d6"},"product_reference":"podman-tests-1.9.3-2.module+el8.2.1+6867+366c07d6","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+6465+1a51e8b6 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+6465+1a51e8b6"},"product_reference":"python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+6465+1a51e8b6","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"python3-criu-3.14-2.module+el8.2.1+6750+e53a300c as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:python3-criu-3.14-2.module+el8.2.1+6750+e53a300c"},"product_reference":"python3-criu-3.14-2.module+el8.2.1+6750+e53a300c","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"runc-1.0.0-66.rc10.module+el8.2.1+6465+1a51e8b6 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:runc-1.0.0-66.rc10.module+el8.2.1+6465+1a51e8b6"},"product_reference":"runc-1.0.0-66.rc10.module+el8.2.1+6465+1a51e8b6","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"skopeo-1.0.0-1.module+el8.2.1+6676+604e1b26 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:skopeo-1.0.0-1.module+el8.2.1+6676+604e1b26"},"product_reference":"skopeo-1.0.0-1.module+el8.2.1+6676+604e1b26","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"skopeo-tests-1.0.0-1.module+el8.2.1+6676+604e1b26 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:skopeo-tests-1.0.0-1.module+el8.2.1+6676+604e1b26"},"product_reference":"skopeo-tests-1.0.0-1.module+el8.2.1+6676+604e1b26","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72"},"product_reference":"slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"toolbox-0.0.7-1.module+el8.2.1+6465+1a51e8b6 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:toolbox-0.0.7-1.module+el8.2.1+6465+1a51e8b6"},"product_reference":"toolbox-0.0.7-1.module+el8.2.1+6465+1a51e8b6","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"udica-0.2.1-2.module+el8.2.1+6465+1a51e8b6 as component of SUSE Liberty Linux 8","product_id":"SUSE Liberty Linux 8:udica-0.2.1-2.module+el8.2.1+6465+1a51e8b6"},"product_reference":"udica-0.2.1-2.module+el8.2.1+6465+1a51e8b6","relates_to_product_reference":"SUSE Liberty Linux 8"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE CaaS Platform 4.0","product_id":"SUSE CaaS Platform 4.0:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE CaaS Platform 4.0"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Enterprise Storage 6","product_id":"SUSE Enterprise Storage 6:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Enterprise Storage 6"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise Server 15 SP1","product_id":"SUSE Linux Enterprise Server 15 SP1:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Linux Enterprise Server 15 SP1","product_id":"SUSE Linux Enterprise Server 15 SP1:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP1:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP1:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise High Performance Computing 15 SP1","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Linux Enterprise High Performance Computing 15 SP1","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP1:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Manager Server 4.0","product_id":"SUSE Manager Server 4.0:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Manager Server 4.0"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Manager Server 4.0","product_id":"SUSE Manager Server 4.0:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Manager Server 4.0"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Manager Proxy 4.0","product_id":"SUSE Manager Proxy 4.0:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Manager Proxy 4.0"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Manager Proxy 4.0","product_id":"SUSE Manager Proxy 4.0:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Manager Proxy 4.0"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Manager Retail Branch Server 4.0","product_id":"SUSE Manager Retail Branch Server 4.0:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Manager Retail Branch Server 4.0"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Manager Retail Branch Server 4.0","product_id":"SUSE Manager Retail Branch Server 4.0:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Manager Retail Branch Server 4.0"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Enterprise Storage 6","product_id":"SUSE Enterprise Storage 6:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Enterprise Storage 6"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise Module for Containers 15 SP1","product_id":"SUSE Linux Enterprise Module for Containers 15 SP1:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise Module for Containers 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Linux Enterprise Module for Containers 15 SP1","product_id":"SUSE Linux Enterprise Module for Containers 15 SP1:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Linux Enterprise Module for Containers 15 SP1"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise Server 15 SP2","product_id":"SUSE Linux Enterprise Server 15 SP2:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP2"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Linux Enterprise Server 15 SP2","product_id":"SUSE Linux Enterprise Server 15 SP2:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP2"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP2"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP2"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise High Performance Computing 15 SP2","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP2:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP2"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Linux Enterprise High Performance Computing 15 SP2","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP2:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP2"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Manager Server 4.1","product_id":"SUSE Manager Server 4.1:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Manager Server 4.1"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Manager Server 4.1","product_id":"SUSE Manager Server 4.1:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Manager Server 4.1"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Manager Proxy 4.1","product_id":"SUSE Manager Proxy 4.1:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Manager Proxy 4.1"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Manager Proxy 4.1","product_id":"SUSE Manager Proxy 4.1:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Manager Proxy 4.1"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Manager Retail Branch Server 4.1","product_id":"SUSE Manager Retail Branch Server 4.1:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Manager Retail Branch Server 4.1"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Manager Retail Branch Server 4.1","product_id":"SUSE Manager Retail Branch Server 4.1:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Manager Retail Branch Server 4.1"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Enterprise Storage 7","product_id":"SUSE Enterprise Storage 7:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Enterprise Storage 7"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Enterprise Storage 7","product_id":"SUSE Enterprise Storage 7:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Enterprise Storage 7"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise Module for Containers 15 SP2","product_id":"SUSE Linux Enterprise Module for Containers 15 SP2:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise Module for Containers 15 SP2"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Linux Enterprise Module for Containers 15 SP2","product_id":"SUSE Linux Enterprise Module for Containers 15 SP2:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Linux Enterprise Module for Containers 15 SP2"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise Server 15 SP1-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP1-LTSS:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"podman-cni-config as component of SUSE Linux Enterprise Server 15 SP1-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP1-LTSS:podman-cni-config"},"product_reference":"podman-cni-config","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP1-LTSS"},{"category":"default_component_of","full_product_name":{"name":"podman as component of SUSE Linux Enterprise Server Business Critical Linux 15 SP1","product_id":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1:podman"},"product_reference":"podman","relates_to_product_reference":"SUSE Linux Enterprise Server Business Critical Linux 15 SP1"}]},"vulnerabilities":[{"cve":"CVE-2021-20188","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2021-20188"}],"notes":[{"category":"general","text":"A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the container. It does not allow to directly escape the container, though being a privileged container means that a lot of security features are disabled when running the container. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.","title":"CVE description"}],"product_status":{"known_not_affected":["SUSE CaaS Platform 4.0:podman","SUSE CaaS Platform 4.0:podman-cni-config","SUSE Enterprise Storage 6:podman","SUSE Enterprise Storage 6:podman-cni-config","SUSE Enterprise Storage 7:podman","SUSE Enterprise Storage 7:podman-cni-config","SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:podman","SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:podman-cni-config","SUSE Linux Enterprise High Performance Computing 15 SP1:podman","SUSE Linux Enterprise High Performance Computing 15 SP1:podman-cni-config","SUSE Linux Enterprise High Performance Computing 15 SP2:podman","SUSE Linux Enterprise High Performance Computing 15 SP2:podman-cni-config","SUSE Linux Enterprise Module for Containers 15 SP1:podman","SUSE Linux Enterprise Module for Containers 15 SP1:podman-cni-config","SUSE Linux Enterprise Module for Containers 15 SP2:podman","SUSE Linux Enterprise Module for Containers 15 SP2:podman-cni-config","SUSE Linux Enterprise Server 15 SP1-LTSS:podman","SUSE Linux Enterprise Server 15 SP1-LTSS:podman-cni-config","SUSE Linux Enterprise Server 15 SP1:podman","SUSE Linux Enterprise Server 15 SP1:podman-cni-config","SUSE Linux Enterprise Server 15 SP2:podman","SUSE Linux Enterprise Server 15 SP2:podman-cni-config","SUSE Linux Enterprise Server Business Critical Linux 15 SP1:podman","SUSE Linux Enterprise Server for SAP Applications 15 SP1:podman","SUSE Linux Enterprise Server for SAP Applications 15 SP1:podman-cni-config","SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman","SUSE Linux Enterprise Server for SAP Applications 15 SP2:podman-cni-config","SUSE Manager Proxy 4.0:podman","SUSE Manager Proxy 4.0:podman-cni-config","SUSE Manager Proxy 4.1:podman","SUSE Manager Proxy 4.1:podman-cni-config","SUSE Manager Retail Branch Server 4.0:podman","SUSE Manager Retail Branch Server 4.0:podman-cni-config","SUSE Manager Retail Branch Server 4.1:podman","SUSE Manager Retail Branch Server 4.1:podman-cni-config","SUSE Manager Server 4.0:podman","SUSE Manager Server 4.0:podman-cni-config","SUSE Manager Server 4.1:podman","SUSE Manager Server 4.1:podman-cni-config"],"recommended":["SUSE Liberty Linux 8:buildah-1.14.9-1.module+el8.2.1+6689+748e6520","SUSE Liberty Linux 8:buildah-tests-1.14.9-1.module+el8.2.1+6689+748e6520","SUSE Liberty Linux 8:cockpit-podman-17-1.module+el8.2.1+6636+bf4db4ab","SUSE Liberty Linux 8:conmon-2.0.17-1.module+el8.2.1+6771+3533eb4c","SUSE Liberty Linux 8:container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a","SUSE Liberty Linux 8:containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4","SUSE Liberty Linux 8:containers-common-1.0.0-1.module+el8.2.1+6676+604e1b26","SUSE Liberty Linux 8:crit-3.14-2.module+el8.2.1+6750+e53a300c","SUSE Liberty Linux 8:criu-3.14-2.module+el8.2.1+6750+e53a300c","SUSE Liberty Linux 8:fuse-overlayfs-1.0.0-2.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91","SUSE Liberty Linux 8:libslirp-devel-4.3.0-3.module+el8.2.1+6816+bedf4f91","SUSE Liberty Linux 8:oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+10171+12421f43","SUSE Liberty Linux 8:oci-umount-2.3.4-2.git87f9237.module+el8.3.0+10171+12421f43","SUSE Liberty Linux 8:podman-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:podman-docker-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:podman-tests-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:python3-criu-3.14-2.module+el8.2.1+6750+e53a300c","SUSE Liberty Linux 8:runc-1.0.0-66.rc10.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:skopeo-1.0.0-1.module+el8.2.1+6676+604e1b26","SUSE Liberty Linux 8:skopeo-tests-1.0.0-1.module+el8.2.1+6676+604e1b26","SUSE Liberty Linux 8:slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72","SUSE Liberty Linux 8:toolbox-0.0.7-1.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:udica-0.2.1-2.module+el8.2.1+6465+1a51e8b6"]},"references":[{"category":"external","summary":"CVE-2021-20188","url":"https://www.suse.com/security/cve/CVE-2021-20188"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1182068 for CVE-2021-20188","url":"https://bugzilla.suse.com/1182068"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Liberty Linux 8:buildah-1.14.9-1.module+el8.2.1+6689+748e6520","SUSE Liberty Linux 8:buildah-tests-1.14.9-1.module+el8.2.1+6689+748e6520","SUSE Liberty Linux 8:cockpit-podman-17-1.module+el8.2.1+6636+bf4db4ab","SUSE Liberty Linux 8:conmon-2.0.17-1.module+el8.2.1+6771+3533eb4c","SUSE Liberty Linux 8:container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a","SUSE Liberty Linux 8:containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4","SUSE Liberty Linux 8:containers-common-1.0.0-1.module+el8.2.1+6676+604e1b26","SUSE Liberty Linux 8:crit-3.14-2.module+el8.2.1+6750+e53a300c","SUSE Liberty Linux 8:criu-3.14-2.module+el8.2.1+6750+e53a300c","SUSE Liberty Linux 8:fuse-overlayfs-1.0.0-2.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91","SUSE Liberty Linux 8:libslirp-devel-4.3.0-3.module+el8.2.1+6816+bedf4f91","SUSE Liberty Linux 8:oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+10171+12421f43","SUSE Liberty Linux 8:oci-umount-2.3.4-2.git87f9237.module+el8.3.0+10171+12421f43","SUSE Liberty Linux 8:podman-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:podman-docker-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:podman-tests-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:python3-criu-3.14-2.module+el8.2.1+6750+e53a300c","SUSE Liberty Linux 8:runc-1.0.0-66.rc10.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:skopeo-1.0.0-1.module+el8.2.1+6676+604e1b26","SUSE Liberty Linux 8:skopeo-tests-1.0.0-1.module+el8.2.1+6676+604e1b26","SUSE Liberty Linux 8:slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72","SUSE Liberty Linux 8:toolbox-0.0.7-1.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:udica-0.2.1-2.module+el8.2.1+6465+1a51e8b6"]}],"scores":[{"cvss_v3":{"baseScore":7,"baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H","version":"3.1"},"products":["SUSE Liberty Linux 8:buildah-1.14.9-1.module+el8.2.1+6689+748e6520","SUSE Liberty Linux 8:buildah-tests-1.14.9-1.module+el8.2.1+6689+748e6520","SUSE Liberty Linux 8:cockpit-podman-17-1.module+el8.2.1+6636+bf4db4ab","SUSE Liberty Linux 8:conmon-2.0.17-1.module+el8.2.1+6771+3533eb4c","SUSE Liberty Linux 8:container-selinux-2.135.0-1.module+el8.2.1+6849+893e4f4a","SUSE Liberty Linux 8:containernetworking-plugins-0.8.6-1.module+el8.2.1+6626+598993b4","SUSE Liberty Linux 8:containers-common-1.0.0-1.module+el8.2.1+6676+604e1b26","SUSE Liberty Linux 8:crit-3.14-2.module+el8.2.1+6750+e53a300c","SUSE Liberty Linux 8:criu-3.14-2.module+el8.2.1+6750+e53a300c","SUSE Liberty Linux 8:fuse-overlayfs-1.0.0-2.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:libslirp-4.3.0-3.module+el8.2.1+6816+bedf4f91","SUSE Liberty Linux 8:libslirp-devel-4.3.0-3.module+el8.2.1+6816+bedf4f91","SUSE Liberty Linux 8:oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+10171+12421f43","SUSE Liberty Linux 8:oci-umount-2.3.4-2.git87f9237.module+el8.3.0+10171+12421f43","SUSE Liberty Linux 8:podman-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:podman-docker-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:podman-remote-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:podman-tests-1.9.3-2.module+el8.2.1+6867+366c07d6","SUSE Liberty Linux 8:python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:python3-criu-3.14-2.module+el8.2.1+6750+e53a300c","SUSE Liberty Linux 8:runc-1.0.0-66.rc10.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:skopeo-1.0.0-1.module+el8.2.1+6676+604e1b26","SUSE Liberty Linux 8:skopeo-tests-1.0.0-1.module+el8.2.1+6676+604e1b26","SUSE Liberty Linux 8:slirp4netns-1.0.1-1.module+el8.2.1+6595+03641d72","SUSE Liberty Linux 8:toolbox-0.0.7-1.module+el8.2.1+6465+1a51e8b6","SUSE Liberty Linux 8:udica-0.2.1-2.module+el8.2.1+6465+1a51e8b6"]}],"threats":[{"category":"impact","date":"2021-02-10T15:42:20Z","details":"important"}],"title":"CVE-2021-20188"}]}