Security Bulletin
Summary
IBM Cloud Automation Manager Content Runtime is affected by an issue with Docker before 19.03.15. as described in CVE-2021-21284 and CVE-2021-21285. If you have IBM Cloud Automation Manager Content Runtime with docker engine 19.03.14 or earlier installed, upgrade it to 19.03.15.
Vulnerability Details
Refer to the security bulletin(s) listed in the Remediation/Fixes section
Affected Products and Versions
Affected Product(s) | Version(s) |
IBM Cloud Automation Manager | 4.2.0.1 |
Remediation/Fixes
IBM Cloud Automation Manager Content Runtime deployment installs either Docker CE or Docker EE on the Content Runtime system based on user selection. Docker CE is installed either using Docker provided convenience scripts or using the installation binary provided by the user. Docker EE is installed using the Docker EE repository URL provided by the user or the installation binary provided by the user.
docker-compose -f docker-compose.yml down
Example:
sudo apt-get install docker-ce=5:19.03.15~3-0~ubuntu-xenial docker-ce-cli=5:19.03.15~3-0~ubuntu-xenial containerd.io
docker-compose -f docker-compose.yml up -d
cd /root/advanced-content-runtime
docker-compose -f docker-compose.yml up -d
sudo yum -y install docker-ee-< version_string > docker-ee-cli-< version_string > containerd.io
docker-compose -f docker-compose.yml up -d
docker-compose -f docker-compose.yml up -d
docker-compose -f docker-compose.yml up -d
Workarounds and Mitigations
None
Get Notified about Future Security Bulletins
References
Change History
13 Apr 2021: Initial Publication
*The CVSS Environment Score is customer environment specific and will ultimately impact the Overall CVSS Score. Customers can evaluate the impact of this vulnerability in their environments by accessing the links in the Reference section of this Security Bulletin.
Disclaimer
Review the IBM security bulletin disclaimer and definitions regarding your responsibilities for assessing potential impact of security vulnerabilities to your environment.
Document Location
Worldwide
Was this topic helpful?
Document Information
Modified date:
22 April 2021
UID
ibm16446211