RHBA-2022:0348

See a problem?
Please try reporting it to the source first.

Source

https://access.redhat.com/errata/RHBA-2022:0348

Import Source

https://security.access.redhat.com/data/osv/RHBA-2022:0348.json

JSON Data

https://api.test.osv.dev/v1/vulns/RHBA-2022:0348

Upstream

CVE-2021-20291

Published

2024-10-20T17:41:01Z

Modified

2025-08-01T10:05:04Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator

Summary

Red Hat Bug Fix Advisory: container-tools:3.0 security, bug fix, and enhancement update

Details

References

Affected packages

Red Hat:enterprise_linux:8::appstream / buildah

Package

Name: buildah
Purl: pkg:rpm/redhat/buildah

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.19.9-1.module+el8.5.0+12236+c988d830

Red Hat:enterprise_linux:8::appstream / buildah-debuginfo

Package

Name: buildah-debuginfo
Purl: pkg:rpm/redhat/buildah-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.19.9-1.module+el8.5.0+12236+c988d830

Red Hat:enterprise_linux:8::appstream / buildah-debugsource

Package

Name: buildah-debugsource
Purl: pkg:rpm/redhat/buildah-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.19.9-1.module+el8.5.0+12236+c988d830

Red Hat:enterprise_linux:8::appstream / buildah-tests

Package

Name: buildah-tests
Purl: pkg:rpm/redhat/buildah-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.19.9-1.module+el8.5.0+12236+c988d830

Red Hat:enterprise_linux:8::appstream / buildah-tests-debuginfo

Package

Name: buildah-tests-debuginfo
Purl: pkg:rpm/redhat/buildah-tests-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.19.9-1.module+el8.5.0+12236+c988d830

Red Hat:enterprise_linux:8::appstream / cockpit-podman

Package

Name: cockpit-podman
Purl: pkg:rpm/redhat/cockpit-podman

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:29-2.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / conmon

Package

Name: conmon
Purl: pkg:rpm/redhat/conmon

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:2.0.26-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / conmon-debuginfo

Package

Name: conmon-debuginfo
Purl: pkg:rpm/redhat/conmon-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:2.0.26-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / conmon-debugsource

Package

Name: conmon-debugsource
Purl: pkg:rpm/redhat/conmon-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:2.0.26-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / container-selinux

Package

Name: container-selinux
Purl: pkg:rpm/redhat/container-selinux

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:2.167.0-1.module+el8.5.0+12609+beaa716d

Red Hat:enterprise_linux:8::appstream / containernetworking-plugins

Package

Name: containernetworking-plugins
Purl: pkg:rpm/redhat/containernetworking-plugins

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.9.1-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / containernetworking-plugins-debuginfo

Package

Name: containernetworking-plugins-debuginfo
Purl: pkg:rpm/redhat/containernetworking-plugins-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.9.1-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / containernetworking-plugins-debugsource

Package

Name: containernetworking-plugins-debugsource
Purl: pkg:rpm/redhat/containernetworking-plugins-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.9.1-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / containers-common

Package

Name: containers-common
Purl: pkg:rpm/redhat/containers-common

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.2.4-1.module+el8.5.0+13605+73abf821

Red Hat:enterprise_linux:8::appstream / crit

Package

Name: crit
Purl: pkg:rpm/redhat/crit

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.15-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / criu

Package

Name: criu
Purl: pkg:rpm/redhat/criu

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.15-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / criu-debuginfo

Package

Name: criu-debuginfo
Purl: pkg:rpm/redhat/criu-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.15-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / criu-debugsource

Package

Name: criu-debugsource
Purl: pkg:rpm/redhat/criu-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.15-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / crun

Package

Name: crun
Purl: pkg:rpm/redhat/crun

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.18-2.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / crun-debuginfo

Package

Name: crun-debuginfo
Purl: pkg:rpm/redhat/crun-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.18-2.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / crun-debugsource

Package

Name: crun-debugsource
Purl: pkg:rpm/redhat/crun-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.18-2.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / fuse-overlayfs

Package

Name: fuse-overlayfs
Purl: pkg:rpm/redhat/fuse-overlayfs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.4.0-2.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / fuse-overlayfs-debuginfo

Package

Name: fuse-overlayfs-debuginfo
Purl: pkg:rpm/redhat/fuse-overlayfs-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.4.0-2.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / fuse-overlayfs-debugsource

Package

Name: fuse-overlayfs-debugsource
Purl: pkg:rpm/redhat/fuse-overlayfs-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.4.0-2.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / libslirp

Package

Name: libslirp
Purl: pkg:rpm/redhat/libslirp

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:4.3.1-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / libslirp-debuginfo

Package

Name: libslirp-debuginfo
Purl: pkg:rpm/redhat/libslirp-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:4.3.1-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / libslirp-debugsource

Package

Name: libslirp-debugsource
Purl: pkg:rpm/redhat/libslirp-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:4.3.1-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / libslirp-devel

Package

Name: libslirp-devel
Purl: pkg:rpm/redhat/libslirp-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:4.3.1-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / oci-seccomp-bpf-hook

Package

Name: oci-seccomp-bpf-hook
Purl: pkg:rpm/redhat/oci-seccomp-bpf-hook

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.2.0-3.module+el8.5.0+11073+ba5c6d09

Red Hat:enterprise_linux:8::appstream / oci-seccomp-bpf-hook-debuginfo

Package

Name: oci-seccomp-bpf-hook-debuginfo
Purl: pkg:rpm/redhat/oci-seccomp-bpf-hook-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.2.0-3.module+el8.5.0+11073+ba5c6d09

Red Hat:enterprise_linux:8::appstream / oci-seccomp-bpf-hook-debugsource

Package

Name: oci-seccomp-bpf-hook-debugsource
Purl: pkg:rpm/redhat/oci-seccomp-bpf-hook-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.2.0-3.module+el8.5.0+11073+ba5c6d09

Red Hat:enterprise_linux:8::appstream / podman

Package

Name: podman
Purl: pkg:rpm/redhat/podman

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / podman-catatonit

Package

Name: podman-catatonit
Purl: pkg:rpm/redhat/podman-catatonit

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / podman-catatonit-debuginfo

Package

Name: podman-catatonit-debuginfo
Purl: pkg:rpm/redhat/podman-catatonit-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / podman-debuginfo

Package

Name: podman-debuginfo
Purl: pkg:rpm/redhat/podman-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / podman-debugsource

Package

Name: podman-debugsource
Purl: pkg:rpm/redhat/podman-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / podman-docker

Package

Name: podman-docker
Purl: pkg:rpm/redhat/podman-docker

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / podman-plugins

Package

Name: podman-plugins
Purl: pkg:rpm/redhat/podman-plugins

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / podman-plugins-debuginfo

Package

Name: podman-plugins-debuginfo
Purl: pkg:rpm/redhat/podman-plugins-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / podman-remote

Package

Name: podman-remote
Purl: pkg:rpm/redhat/podman-remote

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / podman-remote-debuginfo

Package

Name: podman-remote-debuginfo
Purl: pkg:rpm/redhat/podman-remote-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / podman-tests

Package

Name: podman-tests
Purl: pkg:rpm/redhat/podman-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.0.1-7.module+el8.5.0+12960+5b7d72b5

Red Hat:enterprise_linux:8::appstream / python3-criu

Package

Name: python3-criu
Purl: pkg:rpm/redhat/python3-criu

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:3.15-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / runc

Package

Name: runc
Purl: pkg:rpm/redhat/runc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.0.0-72.rc92.module+el8.5.0+12236+c988d830

Red Hat:enterprise_linux:8::appstream / runc-debuginfo

Package

Name: runc-debuginfo
Purl: pkg:rpm/redhat/runc-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.0.0-72.rc92.module+el8.5.0+12236+c988d830

Red Hat:enterprise_linux:8::appstream / runc-debugsource

Package

Name: runc-debugsource
Purl: pkg:rpm/redhat/runc-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.0.0-72.rc92.module+el8.5.0+12236+c988d830

Red Hat:enterprise_linux:8::appstream / skopeo

Package

Name: skopeo
Purl: pkg:rpm/redhat/skopeo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.2.4-1.module+el8.5.0+13605+73abf821

Red Hat:enterprise_linux:8::appstream / skopeo-debuginfo

Package

Name: skopeo-debuginfo
Purl: pkg:rpm/redhat/skopeo-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.2.4-1.module+el8.5.0+13605+73abf821

Red Hat:enterprise_linux:8::appstream / skopeo-debugsource

Package

Name: skopeo-debugsource
Purl: pkg:rpm/redhat/skopeo-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.2.4-1.module+el8.5.0+13605+73abf821

Red Hat:enterprise_linux:8::appstream / skopeo-tests

Package

Name: skopeo-tests
Purl: pkg:rpm/redhat/skopeo-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:1.2.4-1.module+el8.5.0+13605+73abf821

Red Hat:enterprise_linux:8::appstream / slirp4netns

Package

Name: slirp4netns
Purl: pkg:rpm/redhat/slirp4netns

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.1.8-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / slirp4netns-debuginfo

Package

Name: slirp4netns-debuginfo
Purl: pkg:rpm/redhat/slirp4netns-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.1.8-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / slirp4netns-debugsource

Package

Name: slirp4netns-debugsource
Purl: pkg:rpm/redhat/slirp4netns-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:1.1.8-1.module+el8.5.0+10306+3f72d66d

Red Hat:enterprise_linux:8::appstream / toolbox

Package

Name: toolbox
Purl: pkg:rpm/redhat/toolbox

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.0.99.3-1.module+el8.5.0+13746+87221ce8

Red Hat:enterprise_linux:8::appstream / toolbox-debuginfo

Package

Name: toolbox-debuginfo
Purl: pkg:rpm/redhat/toolbox-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.0.99.3-1.module+el8.5.0+13746+87221ce8

Red Hat:enterprise_linux:8::appstream / toolbox-debugsource

Package

Name: toolbox-debugsource
Purl: pkg:rpm/redhat/toolbox-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.0.99.3-1.module+el8.5.0+13746+87221ce8

Red Hat:enterprise_linux:8::appstream / toolbox-tests

Package

Name: toolbox-tests
Purl: pkg:rpm/redhat/toolbox-tests

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.0.99.3-1.module+el8.5.0+13746+87221ce8

Red Hat:enterprise_linux:8::appstream / udica

Package

Name: udica
Purl: pkg:rpm/redhat/udica

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0:0.2.4-1.module+el8.5.0+10306+3f72d66d