An improper link resolution vulnerability affects Kata Containers versions prior to 1.11.0. Upon container teardown, a malicious guest can trick the kata-runtime into unmounting any mount point on the host and all mount points underneath it, potentiality resulting in a host DoS.
CPE | Name | Operator | Version |
---|---|---|---|
runtime | eq | 1.8.0-alpha1 | |
runtime | eq | 1.9.0-alpha1 | |
runtime | eq | 20191207 | |
runtime | eq | 1.8.0-alpha0 | |
runtime | eq | 1.7.0 | |
runtime | eq | 1.5.0-rc2 | |
runtime | eq | 1.6.0-rc1 | |
runtime | eq | 1.8.0-rc0 | |
runtime | eq | 1.9.0-alpha2 | |
runtime | eq | 1.9.0-rc0 |