Issued:: 2017-01-17
Updated:: 2017-01-17

RHSA-2017:0123 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: docker-latest security, bug fix, and enhancement update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for docker-latest is now available for Red Hat Enterprise Linux 7 Extras.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, and self-sufficient container that will run virtually anywhere.

The following packages have been upgraded to a newer upstream version: docker-latest (1.12.5). (BZ#1404309)

Security Fix(es):

The runc component used by `docker exec` feature of docker allowed additional container processes via to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain low-level access to these new processes during initialization. An attacker can, depending on the nature of the incoming process, leverage this to elevate access to the host. This ranges from accessing host content through the file descriptors of the incoming process to, potentially, a complete container escape by leveraging memory access or syscall interception. (CVE-2016-9962)

Red Hat would like to thank the Docker project for reporting this issue. Upstream acknowledges Aleksa Sarai (SUSE) and Tonis Tiigi (Docker) as the original reporters.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server 7 x86_64
Red Hat Enterprise Linux Workstation 7 x86_64

Fixes

BZ - 1402086 - Can't open '/path/to/dir': No such file or directory; volume still in use
BZ - 1404309 - [extras-rhel-7.3.2] rebase docker-latest to v1.12.4 + projectatomic patches
BZ - 1406500 - fork/exec .../docker-runc: no such file or directory
BZ - 1409531 - CVE-2016-9962 docker: insecure opening of file-descriptor allows privilege escalation

CVEs

CVE-2016-9962

References

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 7

SRPM
docker-latest-1.12.5-14.el7.src.rpm	SHA-256: 1e567113f7e3678cbe50757b3894cfe92d25339b1e91c69fea36518dc3d4996d
x86_64
docker-client-latest-1.12.5-14.el7.x86_64.rpm	SHA-256: 3ea5380a1a43ad71c1ea6fb2a4f75740f714b6d09c5bd9a51e3bb2ec2a55980b
docker-latest-1.12.5-14.el7.x86_64.rpm	SHA-256: 25b94be088f17493115e2e92f59d10ce96bec5c0befc71a75680a09ce62fe138
docker-latest-logrotate-1.12.5-14.el7.x86_64.rpm	SHA-256: 0fb001f1a6cef12bd559aed336c86ad57a9e11adbcd5166e8d8ca8691dddb49c
docker-latest-v1.10-migrator-1.12.5-14.el7.x86_64.rpm	SHA-256: 22aafef61697f537521aa5b35ddde8c4010237385236719e9d947f5a99cd82f2

Red Hat Enterprise Linux Workstation 7

SRPM
x86_64

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation