FEDORA-2019-b66d704846 — security update for podman

stable

podman-1.4.0-2.fc29

FEDORA-2019-b66d704846 created by lsm5 4 years ago for Fedora 29

do not install /usr/libexec/crio - conflicts with crio

Resolves: #1715668 - CVE-2019-10152

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2019-b66d704846

This update has been submitted for testing by lsm5.

4 years ago

This update test gating status has been changed to 'waiting'.

4 years ago

This update has obsoleted podman-1.4.0-1.fc29, and has inherited its bugs and notes.

4 years ago

This update test gating status has been changed to 'ignored'.

4 years ago

santiago commented & provided feedback 4 years ago

karma

LGTM. #980 (regression) and #3302 (intermittent weirdness with attach) are IMO minor.

Confirmed that /usr/libexec/crio* are gone.

This update has been pushed to testing.

4 years ago

tpopela commented & provided feedback 4 years ago

karma

Installs fine (when compared to podman-1.4.0-1.fc29) and works with toolbox.

rishi commented & provided feedback 4 years ago

karma

Installs fine (when compared to podman-1.4.0-1.fc29) and works with toolbox.

This update has been submitted for stable by bodhi.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

ignored

Builds

podman-1.4.0-2.fc29

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

4 years ago

in testing

4 years ago

in stable

4 years ago

BZ#1715668 CVE-2019-10152 podman: Improper symlink resolution allows access to host files when executing `podman cp` on running containers [fedora-all]

podman-1.4.0-2.fc29

Automated Test Results

ignored