Lucene search
K

41 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/01/09 3:40 p.m.43 views

Security Bulletin: Multiple vulnerabilities in containerd may affect IBM Decision Optimization for IBM Cloud Pak for Data (CVE-2022-31030, CVE-2022-23471)

Summary There are multiple vulnerabilities in containerd used by IBM Decision Optimization for IBM Cloud Pak for Data. IBM Decision Optimization for IBM Cloud Pak for Data has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2022-31030 DESCRIPTION: containerd is vulnerable to a deni...

6.5CVSS6.6AI score0.01022EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2023/06/09 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2023-2142)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.00542EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/06/09 12:0 a.m.51 views

EulerOS 2.0 SP8 : docker-engine (EulerOS-SA-2023-2190)

According to the versions of the docker-engine package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - containerd is an open source container runtime. A bug was found in the containerd's CRI implementation where programs inside a container c...

5.5CVSS7AI score0.00377EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/15 6:50 p.m.41 views

Security Bulletin: Open Source Dependency Vulnerability

Summary IBM Edge Application Manager 4.5 has resolved the vulnerability. Vulnerability Details CVEID:CVE-2021-41190 DESCRIPTION: Open Container Initiative Distribution Specification could allow a remote authenticated attacker to bypass security restrictions, caused by a flaw when a Content-Type...

9.1CVSS7.8AI score0.27392EPSS
Exploits5Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.47 views

Amazon Linux 2023 : containerd, containerd-stress (ALAS2023-2023-079)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-079 advisory. A bug was found in containerd where containers launched through containerd's CRI implementation with a specially-crafted image configuration could gain access to read-only copies of arbitrary...

7.5CVSS7.3AI score0.27392EPSS
Exploits4References10
OpenVAS
OpenVAS
added 2023/03/07 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for containerd (EulerOS-SA-2023-1406)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6AI score0.00377EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/03/07 12:0 a.m.50 views

EulerOS 2.0 SP11 : containerd (EulerOS-SA-2023-1406)

According to the versions of the containerd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - containerd is an open source container runtime. A bug was found in the containerd's CRI implementation where programs inside a container can...

5.5CVSS7AI score0.00377EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/03/07 12:0 a.m.68 views

EulerOS 2.0 SP11 : containerd (EulerOS-SA-2023-1421)

According to the versions of the containerd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - containerd is an open source container runtime. A bug was found in the containerd's CRI implementation where programs inside a container can...

5.5CVSS7AI score0.00377EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.46 views

Ubuntu: Security Advisory (USN-5521-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.27392EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2023/01/25 12:0 a.m.53 views

Amazon Linux 2022 : containerd, containerd-stress (ALAS2022-2022-210)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-210 advisory. A bug was found in containerd where containers launched through containerd's CRI implementation with a specially-crafted image configuration could gain access to read-only copies of arbitrary...

7.5CVSS7.3AI score0.27392EPSS
Exploits4References9
Ubuntu
Ubuntu
added 2022/12/13 8:35 a.m.291 views

USN-5776-1: containerd vulnerabilities

It was discovered that containerd incorrectly handled memory when receiving certain faulty Exec or ExecSync commands. A remote attacker could possibly use this issue to cause a denial of service or crash containerd. CVE-2022-23471, CVE-2022-31030 It was discovered that containerd incorrectly set ...

7.5CVSS6.6AI score0.02676EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/10/20 12:0 a.m.30 views

Amazon Linux 2022 : containerd, containerd-stress (ALAS2022-2022-156)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-156 advisory. A bug was found in containerd's CRI implementation where programs inside a container can cause the containerd daemon to consume memory without bound during invocation of the ExecSync API. This...

6.3CVSS6.9AI score0.00807EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/10/10 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-2427)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6AI score0.00377EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/10/10 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-2414)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6AI score0.00377EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/10/08 12:0 a.m.36 views

EulerOS 2.0 SP10 : docker-engine (EulerOS-SA-2022-2414)

According to the versions of the docker-engine package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - containerd is an open source container runtime. A bug was found in the containerd's CRI implementation where programs inside a container c...

5.5CVSS7AI score0.00377EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/10/08 12:0 a.m.38 views

EulerOS 2.0 SP10 : docker-engine (EulerOS-SA-2022-2427)

According to the versions of the docker-engine package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - containerd is an open source container runtime. A bug was found in the containerd's CRI implementation where programs inside a container c...

5.5CVSS7AI score0.00377EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/09/06 12:0 a.m.32 views

Amazon Linux 2022 : containerd, containerd-stress (ALAS2022-2022-088)

It is, therefore, affected by a vulnerability as referenced in the ALAS2022-2022-088 advisory. A bug was found in containerd's CRI implementation where programs inside a container can cause the containerd daemon to consume memory without bound during invocation of the ExecSync API. This can cause...

5.5CVSS7AI score0.00377EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2022/07/15 1:48 p.m.85 views

USN-5521-1: containerd vulnerabilities

It was discovered that containerd insufficiently restricted permissions on container root and plugin directories. If a user or automated system were tricked into launching a specially crafted container image, a remote attacker could traverse directory contents and modify files and execute program...

7.8CVSS7AI score0.27392EPSS
Exploits6
CBLMariner
CBLMariner
added 2022/07/14 9:0 p.m.23 views

CVE-2022-31030 affecting package moby-containerd 1.5.9+azure-7

CVE-2022-31030 affecting package moby-containerd 1.5.9+azure-7. An upgraded version of the package is available that resolves this issue...

5.5CVSS9.2AI score0.00377EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/07/11 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2022:2341-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.00386EPSS
Exploits0References14
Rows per page
Query Builder