AWS-2021-003

This is an update for this issue. Binaries of AWS IoT Greengrass Core V1 (1.10.4 and 1.11.3) with patched runC are now available for download ( https://docs.aws.amazon.com/greengrass/v1/developerguide/what-is-gg.html ). An updated Greengrass V2 Lambda Launcher v2.0.6 ( https://docs.aws.amazon.com/greengrass/v2/developerguide/lambda-launcher-component.html ) is also available in the AWS IoT console. We recommend Greengrass customers upgrade to the latest binaries and Lambda Launcher to incorporate the latest runC patch. [V1] Initial Publication Date: 2021/06/08 2:20 PM PDT You are viewing a previous version of this security bulletin. AWS is aware of the recently disclosed security issue in runC which is a component of many container management systems (CVE-2021-30465). With the exception of the AWS services listed below, no customer action is required to address this issue. Amazon Elastic Container Service (Amazon ECS) Amazon ECS has released updated ECS-optimized Amazon Machine Images (AMIs) with the patched container runtime on May 21, 2021. More information about the ECS-optimized AMI is available at https://docs.aws.amazon.com/AmazonECS/latest/developerguide/ecs-optimized_AMI.ht…