Amazon Linux 2 Security Advisory: ALASDOCKER-2021-013
Advisory Release Date: 2021-10-19 20:50 Pacific
Advisory Updated Date: 2021-11-18 21:36 Pacific
Severity:
Medium
References:
CVE-2020-15157
Issue Overview:
A flaw was found in containerd. Credentials may be leaked during an image pull. (CVE-2020-15157)
Affected Packages:
containerd
Issue Correction:
Run yum update containerd to update your system.
New Packages:
aarch64:
containerd-1.3.2-1.amzn2.aarch64
containerd-stress-1.3.2-1.amzn2.aarch64
containerd-debuginfo-1.3.2-1.amzn2.aarch64
src:
containerd-1.3.2-1.amzn2.src
x86_64:
containerd-1.3.2-1.amzn2.x86_64
containerd-stress-1.3.2-1.amzn2.x86_64
containerd-debuginfo-1.3.2-1.amzn2.x86_64