Issued:: 2024-07-23
Updated:: 2024-07-23

RHSA-2024:4762 - Security Advisory

Overview
Updated Packages

Synopsis

Important: runc security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for runc is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides container runtime.

Security Fix(es):

golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 9 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64
Red Hat Enterprise Linux Server - AUS 9.6 x86_64
Red Hat Enterprise Linux Server - AUS 9.4 x86_64
Red Hat Enterprise Linux for IBM z Systems 9 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x
Red Hat Enterprise Linux for Power, little endian 9 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le
Red Hat Enterprise Linux for ARM 64 9 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x

Fixes

BZ - 2262921 - CVE-2024-1394 golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads

CVEs

CVE-2024-1394

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 9

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
x86_64
runc-1.1.12-3.el9_4.x86_64.rpm	SHA-256: c0097f640cd345c41ada9c48880d817d39494669400e18c1bf5522395ff109df
runc-debuginfo-1.1.12-3.el9_4.x86_64.rpm	SHA-256: e1801bf0b3a2d3758b3b804943d9cfd6872cd932c6cdc65145c29e997da61614
runc-debugsource-1.1.12-3.el9_4.x86_64.rpm	SHA-256: 728398392251458cc5855c473e16f50f2cb21e83359a2dacc7ebffcd536301c5

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
x86_64
runc-1.1.12-3.el9_4.x86_64.rpm	SHA-256: c0097f640cd345c41ada9c48880d817d39494669400e18c1bf5522395ff109df
runc-debuginfo-1.1.12-3.el9_4.x86_64.rpm	SHA-256: e1801bf0b3a2d3758b3b804943d9cfd6872cd932c6cdc65145c29e997da61614
runc-debugsource-1.1.12-3.el9_4.x86_64.rpm	SHA-256: 728398392251458cc5855c473e16f50f2cb21e83359a2dacc7ebffcd536301c5

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
x86_64
runc-1.1.12-3.el9_4.x86_64.rpm	SHA-256: c0097f640cd345c41ada9c48880d817d39494669400e18c1bf5522395ff109df
runc-debuginfo-1.1.12-3.el9_4.x86_64.rpm	SHA-256: e1801bf0b3a2d3758b3b804943d9cfd6872cd932c6cdc65145c29e997da61614
runc-debugsource-1.1.12-3.el9_4.x86_64.rpm	SHA-256: 728398392251458cc5855c473e16f50f2cb21e83359a2dacc7ebffcd536301c5

Red Hat Enterprise Linux Server - AUS 9.6

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
x86_64
runc-1.1.12-3.el9_4.x86_64.rpm	SHA-256: c0097f640cd345c41ada9c48880d817d39494669400e18c1bf5522395ff109df
runc-debuginfo-1.1.12-3.el9_4.x86_64.rpm	SHA-256: e1801bf0b3a2d3758b3b804943d9cfd6872cd932c6cdc65145c29e997da61614
runc-debugsource-1.1.12-3.el9_4.x86_64.rpm	SHA-256: 728398392251458cc5855c473e16f50f2cb21e83359a2dacc7ebffcd536301c5

Red Hat Enterprise Linux Server - AUS 9.4

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
x86_64
runc-1.1.12-3.el9_4.x86_64.rpm	SHA-256: c0097f640cd345c41ada9c48880d817d39494669400e18c1bf5522395ff109df
runc-debuginfo-1.1.12-3.el9_4.x86_64.rpm	SHA-256: e1801bf0b3a2d3758b3b804943d9cfd6872cd932c6cdc65145c29e997da61614
runc-debugsource-1.1.12-3.el9_4.x86_64.rpm	SHA-256: 728398392251458cc5855c473e16f50f2cb21e83359a2dacc7ebffcd536301c5

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
s390x
runc-1.1.12-3.el9_4.s390x.rpm	SHA-256: e4a5bc00051e4c53358dae532fd12c3cf0d638147538a53727f4fb0a56c1775b
runc-debuginfo-1.1.12-3.el9_4.s390x.rpm	SHA-256: 8b3258f833ec8409f416d7fbd02777098a8c17f9c5ac5c41d45c38cb5acdc1b4
runc-debugsource-1.1.12-3.el9_4.s390x.rpm	SHA-256: 400ca812de0550e7d64db905e1970f050651a5a68fa36ecf59fe5e0513de0534

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
s390x
runc-1.1.12-3.el9_4.s390x.rpm	SHA-256: e4a5bc00051e4c53358dae532fd12c3cf0d638147538a53727f4fb0a56c1775b
runc-debuginfo-1.1.12-3.el9_4.s390x.rpm	SHA-256: 8b3258f833ec8409f416d7fbd02777098a8c17f9c5ac5c41d45c38cb5acdc1b4
runc-debugsource-1.1.12-3.el9_4.s390x.rpm	SHA-256: 400ca812de0550e7d64db905e1970f050651a5a68fa36ecf59fe5e0513de0534

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
s390x
runc-1.1.12-3.el9_4.s390x.rpm	SHA-256: e4a5bc00051e4c53358dae532fd12c3cf0d638147538a53727f4fb0a56c1775b
runc-debuginfo-1.1.12-3.el9_4.s390x.rpm	SHA-256: 8b3258f833ec8409f416d7fbd02777098a8c17f9c5ac5c41d45c38cb5acdc1b4
runc-debugsource-1.1.12-3.el9_4.s390x.rpm	SHA-256: 400ca812de0550e7d64db905e1970f050651a5a68fa36ecf59fe5e0513de0534

Red Hat Enterprise Linux for Power, little endian 9

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
ppc64le
runc-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: 48e86ea42eebd0d99213401764b0b45caa01024a248e28b90473024b591c9287
runc-debuginfo-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: a25c66c6a4118528f2402aecf3fc309ea3f3fe08c97d3964ff1fe83425cb3be1
runc-debugsource-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: a71e70effc47aeb4eedd7b1e1bd37fd0b82359ed7fa6acc0f842a36d106f8f26

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
ppc64le
runc-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: 48e86ea42eebd0d99213401764b0b45caa01024a248e28b90473024b591c9287
runc-debuginfo-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: a25c66c6a4118528f2402aecf3fc309ea3f3fe08c97d3964ff1fe83425cb3be1
runc-debugsource-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: a71e70effc47aeb4eedd7b1e1bd37fd0b82359ed7fa6acc0f842a36d106f8f26

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
ppc64le
runc-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: 48e86ea42eebd0d99213401764b0b45caa01024a248e28b90473024b591c9287
runc-debuginfo-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: a25c66c6a4118528f2402aecf3fc309ea3f3fe08c97d3964ff1fe83425cb3be1
runc-debugsource-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: a71e70effc47aeb4eedd7b1e1bd37fd0b82359ed7fa6acc0f842a36d106f8f26

Red Hat Enterprise Linux for ARM 64 9

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
aarch64
runc-1.1.12-3.el9_4.aarch64.rpm	SHA-256: b6c960c14445d3f1e4b328c5bbb923e0b3418c8acf85100e6b10ab99ef30ba3c
runc-debuginfo-1.1.12-3.el9_4.aarch64.rpm	SHA-256: 8b2ee7f71d08de59163a6dde68be3a66119c46449849cfc050b12816c032c1b4
runc-debugsource-1.1.12-3.el9_4.aarch64.rpm	SHA-256: 2c078e3d1415add1e3104ccd34395c85df5449894fb08d1529d8fccf71431f44

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
aarch64
runc-1.1.12-3.el9_4.aarch64.rpm	SHA-256: b6c960c14445d3f1e4b328c5bbb923e0b3418c8acf85100e6b10ab99ef30ba3c
runc-debuginfo-1.1.12-3.el9_4.aarch64.rpm	SHA-256: 8b2ee7f71d08de59163a6dde68be3a66119c46449849cfc050b12816c032c1b4
runc-debugsource-1.1.12-3.el9_4.aarch64.rpm	SHA-256: 2c078e3d1415add1e3104ccd34395c85df5449894fb08d1529d8fccf71431f44

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
aarch64
runc-1.1.12-3.el9_4.aarch64.rpm	SHA-256: b6c960c14445d3f1e4b328c5bbb923e0b3418c8acf85100e6b10ab99ef30ba3c
runc-debuginfo-1.1.12-3.el9_4.aarch64.rpm	SHA-256: 8b2ee7f71d08de59163a6dde68be3a66119c46449849cfc050b12816c032c1b4
runc-debugsource-1.1.12-3.el9_4.aarch64.rpm	SHA-256: 2c078e3d1415add1e3104ccd34395c85df5449894fb08d1529d8fccf71431f44

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
ppc64le
runc-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: 48e86ea42eebd0d99213401764b0b45caa01024a248e28b90473024b591c9287
runc-debuginfo-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: a25c66c6a4118528f2402aecf3fc309ea3f3fe08c97d3964ff1fe83425cb3be1
runc-debugsource-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: a71e70effc47aeb4eedd7b1e1bd37fd0b82359ed7fa6acc0f842a36d106f8f26

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
ppc64le
runc-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: 48e86ea42eebd0d99213401764b0b45caa01024a248e28b90473024b591c9287
runc-debuginfo-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: a25c66c6a4118528f2402aecf3fc309ea3f3fe08c97d3964ff1fe83425cb3be1
runc-debugsource-1.1.12-3.el9_4.ppc64le.rpm	SHA-256: a71e70effc47aeb4eedd7b1e1bd37fd0b82359ed7fa6acc0f842a36d106f8f26

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
x86_64
runc-1.1.12-3.el9_4.x86_64.rpm	SHA-256: c0097f640cd345c41ada9c48880d817d39494669400e18c1bf5522395ff109df
runc-debuginfo-1.1.12-3.el9_4.x86_64.rpm	SHA-256: e1801bf0b3a2d3758b3b804943d9cfd6872cd932c6cdc65145c29e997da61614
runc-debugsource-1.1.12-3.el9_4.x86_64.rpm	SHA-256: 728398392251458cc5855c473e16f50f2cb21e83359a2dacc7ebffcd536301c5

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
x86_64
runc-1.1.12-3.el9_4.x86_64.rpm	SHA-256: c0097f640cd345c41ada9c48880d817d39494669400e18c1bf5522395ff109df
runc-debuginfo-1.1.12-3.el9_4.x86_64.rpm	SHA-256: e1801bf0b3a2d3758b3b804943d9cfd6872cd932c6cdc65145c29e997da61614
runc-debugsource-1.1.12-3.el9_4.x86_64.rpm	SHA-256: 728398392251458cc5855c473e16f50f2cb21e83359a2dacc7ebffcd536301c5

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
aarch64
runc-1.1.12-3.el9_4.aarch64.rpm	SHA-256: b6c960c14445d3f1e4b328c5bbb923e0b3418c8acf85100e6b10ab99ef30ba3c
runc-debuginfo-1.1.12-3.el9_4.aarch64.rpm	SHA-256: 8b2ee7f71d08de59163a6dde68be3a66119c46449849cfc050b12816c032c1b4
runc-debugsource-1.1.12-3.el9_4.aarch64.rpm	SHA-256: 2c078e3d1415add1e3104ccd34395c85df5449894fb08d1529d8fccf71431f44

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
aarch64
runc-1.1.12-3.el9_4.aarch64.rpm	SHA-256: b6c960c14445d3f1e4b328c5bbb923e0b3418c8acf85100e6b10ab99ef30ba3c
runc-debuginfo-1.1.12-3.el9_4.aarch64.rpm	SHA-256: 8b2ee7f71d08de59163a6dde68be3a66119c46449849cfc050b12816c032c1b4
runc-debugsource-1.1.12-3.el9_4.aarch64.rpm	SHA-256: 2c078e3d1415add1e3104ccd34395c85df5449894fb08d1529d8fccf71431f44

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
s390x
runc-1.1.12-3.el9_4.s390x.rpm	SHA-256: e4a5bc00051e4c53358dae532fd12c3cf0d638147538a53727f4fb0a56c1775b
runc-debuginfo-1.1.12-3.el9_4.s390x.rpm	SHA-256: 8b3258f833ec8409f416d7fbd02777098a8c17f9c5ac5c41d45c38cb5acdc1b4
runc-debugsource-1.1.12-3.el9_4.s390x.rpm	SHA-256: 400ca812de0550e7d64db905e1970f050651a5a68fa36ecf59fe5e0513de0534

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4

SRPM
runc-1.1.12-3.el9_4.src.rpm	SHA-256: e5c631c071299af709ec03813165a34a767eeb4ca19a29e1040ea48cd9f5da52
s390x
runc-1.1.12-3.el9_4.s390x.rpm	SHA-256: e4a5bc00051e4c53358dae532fd12c3cf0d638147538a53727f4fb0a56c1775b
runc-debuginfo-1.1.12-3.el9_4.s390x.rpm	SHA-256: 8b3258f833ec8409f416d7fbd02777098a8c17f9c5ac5c41d45c38cb5acdc1b4
runc-debugsource-1.1.12-3.el9_4.s390x.rpm	SHA-256: 400ca812de0550e7d64db905e1970f050651a5a68fa36ecf59fe5e0513de0534

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.