libcontainers-common-20210626-5.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10931 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libcontainers-common-20210626-5.1 on GA media These are all security issues fixed in the libcontainers-common-20210626-5.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10931 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10931 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2018-15664/ SUSE CVE CVE-2018-15664 page https://www.suse.com/security/cve/CVE-2019-10152/ SUSE CVE CVE-2019-10152 page openSUSE Tumbleweed libcontainers-common-20210626-5.1 libcontainers-common-20210626-5.1 as a component of openSUSE Tumbleweed In Docker through 18.06.1-ce-rc2, the API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do archive operations on a frozen filesystem (or from within a chroot). CVE-2018-15664 openSUSE Tumbleweed:libcontainers-common-20210626-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-15664.html CVE-2018-15664 https://bugzilla.suse.com/1096726 SUSE Bug 1096726 https://bugzilla.suse.com/1139649 SUSE Bug 1139649 A path traversal vulnerability has been discovered in podman before version 1.4.0 in the way it handles symlinks inside containers. An attacker who has compromised an existing container can cause arbitrary files on the host filesystem to be read/written when an administrator tries to copy a file from/to the container. CVE-2019-10152 openSUSE Tumbleweed:libcontainers-common-20210626-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10152.html CVE-2019-10152 https://bugzilla.suse.com/1136974 SUSE Bug 1136974