ISulad Security Vulnerabilities

CVE-2021-33632

Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in openEuler iSulad on Linux allows Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions. This vulnerability is associated with program files https://gitee.Com/openeuler/iSulad/blob/master/src/cmd/isulad/main.C. This...

CVE-2021-33635

When malicious images are pulled by isula pull, attackers can execute arbitrary...

CVE-2021-33638

When the isula cp command is used to copy files from a container to a host machine and the container is controlled by an attacker, the attacker can escape the...

CVE-2021-33636

When the isula load command is used to load malicious images, attackers can execute arbitrary...

CVE-2021-33637

When the isula export command is used to export a container to an image and the container is controlled by an attacker, the attacker can escape the...