{"affected":[{"ecosystem_specific":{"binaries":[{"runc":"1.0.0~rc8-1.6.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Containers 15 SP1","name":"runc","purl":"pkg:rpm/suse/runc&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.0.0~rc8-1.6.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for runc fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2019-16884: Fixed an LSM bypass via malicious Docker images that mount over a /proc directory. (bsc#1152308)\n\nNon-security issues fixed:\n\n- Includes upstreamed patches for regressions (bsc#1131314 bsc#1131553).\n","id":"SUSE-SU-2019:2810-1","modified":"2019-10-29T13:56:47Z","published":"2019-10-29T13:56:47Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2019/suse-su-20192810-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1131314"},{"type":"REPORT","url":"https://bugzilla.suse.com/1131553"},{"type":"REPORT","url":"https://bugzilla.suse.com/1152308"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-16884"}],"related":["CVE-2019-16884"],"summary":"Security update for runc","upstream":["CVE-2019-16884"]}