{"affected":[{"ecosystem_specific":{"binaries":[{"containerd":"1.2.10-lp151.2.9.1","containerd-ctr":"1.2.10-lp151.2.9.1","docker":"19.03.5_ce-lp151.2.15.1","docker-bash-completion":"19.03.5_ce-lp151.2.15.1","docker-libnetwork":"0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1","docker-runc":"1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1","docker-test":"19.03.5_ce-lp151.2.15.1","docker-zsh-completion":"19.03.5_ce-lp151.2.15.1","golang-github-docker-libnetwork":"0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.1","name":"containerd","purl":"pkg:rpm/opensuse/containerd&distro=openSUSE%20Leap%2015.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.2.10-lp151.2.9.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"containerd":"1.2.10-lp151.2.9.1","containerd-ctr":"1.2.10-lp151.2.9.1","docker":"19.03.5_ce-lp151.2.15.1","docker-bash-completion":"19.03.5_ce-lp151.2.15.1","docker-libnetwork":"0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1","docker-runc":"1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1","docker-test":"19.03.5_ce-lp151.2.15.1","docker-zsh-completion":"19.03.5_ce-lp151.2.15.1","golang-github-docker-libnetwork":"0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.1","name":"docker","purl":"pkg:rpm/opensuse/docker&distro=openSUSE%20Leap%2015.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"19.03.5_ce-lp151.2.15.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"containerd":"1.2.10-lp151.2.9.1","containerd-ctr":"1.2.10-lp151.2.9.1","docker":"19.03.5_ce-lp151.2.15.1","docker-bash-completion":"19.03.5_ce-lp151.2.15.1","docker-libnetwork":"0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1","docker-runc":"1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1","docker-test":"19.03.5_ce-lp151.2.15.1","docker-zsh-completion":"19.03.5_ce-lp151.2.15.1","golang-github-docker-libnetwork":"0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.1","name":"docker-runc","purl":"pkg:rpm/opensuse/docker-runc&distro=openSUSE%20Leap%2015.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"containerd":"1.2.10-lp151.2.9.1","containerd-ctr":"1.2.10-lp151.2.9.1","docker":"19.03.5_ce-lp151.2.15.1","docker-bash-completion":"19.03.5_ce-lp151.2.15.1","docker-libnetwork":"0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1","docker-runc":"1.0.0rc8+gitr3917_3e425f80a8c9-lp151.3.12.1","docker-test":"19.03.5_ce-lp151.2.15.1","docker-zsh-completion":"19.03.5_ce-lp151.2.15.1","golang-github-docker-libnetwork":"0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.1","name":"golang-github-docker-libnetwork","purl":"pkg:rpm/opensuse/golang-github-docker-libnetwork&distro=openSUSE%20Leap%2015.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.7.0.1+gitr2877_3eb39382bfa6-lp151.2.9.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2019-16884: Fixed incomplete patch for LSM bypass via malicious Docker image that mount over a /proc directory (bsc#1152308). \n\nBug fixes:\n\n- Update to Docker 19.03.5-ce (bsc#1158590).\n- Update to Docker 19.03.3-ce (bsc#1153367).\n- Update to Docker 19.03.2-ce (bsc#1150397).\n- Fixed default installation such that --userns-remap=default works properly (bsc#1143349).\n- Fixed nginx blocked by apparmor (bsc#1122469).\n\nThis update was imported from the SUSE:SLE-15:Update update project.","id":"openSUSE-SU-2020:0045-1","modified":"2020-01-13T17:16:40Z","published":"2020-01-13T17:16:40Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/7SG42XULDNEP3QYZYRNN6W3EOIOR7RWW/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1122469"},{"type":"REPORT","url":"https://bugzilla.suse.com/1143349"},{"type":"REPORT","url":"https://bugzilla.suse.com/1150397"},{"type":"REPORT","url":"https://bugzilla.suse.com/1152308"},{"type":"REPORT","url":"https://bugzilla.suse.com/1153367"},{"type":"REPORT","url":"https://bugzilla.suse.com/1158590"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-16884"}],"related":["CVE-2019-16884"],"summary":"Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork","upstream":["CVE-2019-16884"]}