{"schema_version": "1.7.0", "id": "RLSA-2024:0752", "modified": "2025-07-29T14:59:58.064775Z", "published": "2024-02-12T20:17:26.918627Z", "upstream": ["CVE-2024-21626"], "summary": "Important: container-tools:rhel8 security update", "details": "The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.\n\nSecurity Fix(es):\n\n* runc: file descriptor leak (CVE-2024-21626)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "severity": [{"type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H"}], "affected": [{"package": {"ecosystem": "Rocky Linux:8", "name": "libslirp", "purl": "pkg:rpm/rocky-linux/libslirp?distro=rocky-linux-8&epoch=0"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "0:4.4.0-1.module+el8.9.0+1445+07728297"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "runc", "purl": "pkg:rpm/rocky-linux/runc?distro=rocky-linux-8&epoch=1"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "1:1.1.12-1.module+el8.10.0+1815+5fe7415e"}], "database_specific": {"yum_repository": "AppStream"}}]}, {"package": {"ecosystem": "Rocky Linux:8", "name": "runc", "purl": "pkg:rpm/rocky-linux/runc?distro=rocky-linux-8&epoch=1"}, "ranges": [{"type": "ECOSYSTEM", "events": [{"introduced": "0"}, {"fixed": "1:1.1.12-1.module+el8.10.0+1825+623b0c20"}], "database_specific": {"yum_repository": "AppStream"}}]}], "references": [{"type": "ADVISORY", "url": "https://errata.rockylinux.org/RLSA-2024:0752"}, {"type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2258725"}], "credits": [{"name": "Rocky Enterprise Software Foundation"}, {"name": "Red Hat"}]}