Lucene search
K

355 matches found

Fedora
Fedora
added 2025/11/22 1:17 a.m.7 views

[SECURITY] Fedora 41 Update: cri-o1.32-1.32.10-1.fc41

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

7.5CVSS7AI score0.00626EPSS
Exploits0
Fedora
Fedora
added 2025/11/22 1:17 a.m.7 views

[SECURITY] Fedora 41 Update: cri-o1.34-1.34.2-1.fc41

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

7.5CVSS7AI score0.00626EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/22 12:0 a.m.3 views

Fedora 42 : cri-o1.34 (2025-1e7710541e)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-1e7710541e advisory. - Update to release 1.34.2 - Resolves: rhbz2407595, rhbz2407866, rhbz2408142, rhbz2408577 - Resolves: rhbz2408640, rhbz2408703, rhbz2409050,...

7.5CVSS7.3AI score0.00626EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.6 views

TencentOS Server 4: crun (TSSA-2025:0244)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0244 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.5CVSS7.7AI score0.00533EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.4 views

RHEL 9 : podman (RHSA-2025:21702)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:21702 advisory. The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods...

7.5CVSS7.1AI score0.00523EPSS
Exploits1References4
OSV
OSV
added 2025/11/17 7:11 p.m.5 views

GO-2025-4100 containerd affected by a local privilege escalation via wide permissions on CRI directory in github.com/containerd/containerd

containerd affected by a local privilege escalation via wide permissions on CRI directory in github.com/containerd/containerd...

7.8CVSS6.8AI score0.00159EPSS
Exploits1References4
Fedora
Fedora
added 2025/11/15 1:45 a.m.16 views

[SECURITY] Fedora 41 Update: containerd-1.7.29-1.fc41

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.8CVSS7.1AI score0.00626EPSS
Exploits3
Fedora
Fedora
added 2025/11/15 12:53 a.m.7 views

[SECURITY] Fedora 43 Update: containerd-2.1.5-1.fc43

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.8CVSS7.1AI score0.00626EPSS
Exploits1
Fedora
Fedora
added 2025/11/14 12:56 a.m.13 views

[SECURITY] Fedora 42 Update: runc-1.3.3-1.fc42

The runc command can be used to start containers which are packaged in accordance with the Open Container Initiative's specifications, and to manage containers running under runc...

8.4CVSS7.1AI score0.0067EPSS
Exploits4
OSV
OSV
added 2025/11/13 10:15 p.m.5 views

AZL-70316 CVE-2025-47913 affecting package cri-o 1.30.1-1

SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process...

7.5CVSS6.7AI score0.00632EPSS
Exploits1References1
Microsoft CVE
Microsoft CVE
added 2025/11/08 9:8 a.m.7 views

containerd affected by a local privilege escalation via wide permissions on CRI directory

...

7.8CVSS6.7AI score0.00159EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2025/11/08 12:15 a.m.4 views

SUSE CVE-2025-64329

containerd is an open-source container runtime. Versions 1.7.28 and below, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4, and 2.2.0-beta.0 through 2.2.0-rc.1 contain a bug in the CRI Attach implementation where a user can exhaust memory on the host due to goroutine leaks. This issue is...

5.1CVSS6.8AI score0.00162EPSS
Exploits1References7
OSV
OSV
added 2025/11/07 5:16 a.m.6 views

AZL-69745 CVE-2025-64329 affecting package moby-containerd-cc for versions less than 1.7.7-10

containerd is an open-source container runtime. Versions 1.7.28 and below, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4, and 2.2.0-beta.0 through 2.2.0-rc.1 contain a bug in the CRI Attach implementation where a user can exhaust memory on the host due to goroutine leaks. This issue is...

6.9CVSS6.7AI score0.00162EPSS
Exploits1References1
OSV
OSV
added 2025/11/07 5:16 a.m.7 views

AZL-69976 CVE-2025-64329 affecting package moby-containerd-cc for versions less than 1.7.7-13

containerd is an open-source container runtime. Versions 1.7.28 and below, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4, and 2.2.0-beta.0 through 2.2.0-rc.1 contain a bug in the CRI Attach implementation where a user can exhaust memory on the host due to goroutine leaks. This issue is...

6.9CVSS6.7AI score0.00162EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2025/11/07 4:15 a.m.6 views

CVE-2025-64329

containerd is an open-source container runtime. Versions 1.7.28 and below, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4, and 2.2.0-beta.0 through 2.2.0-rc.1 contain a bug in the CRI Attach implementation where a user can exhaust memory on the host due to goroutine leaks. This issue is...

6.9CVSS5.6AI score0.00162EPSS
Exploits1
NVD
NVD
added 2025/11/06 8:15 p.m.20 views

CVE-2025-52565

runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside the container, an attacker can...

8.4CVSS0.00523EPSS
Exploits1References9
OSV
OSV
added 2025/11/06 6:36 p.m.4 views

CVE-2024-25621 containerd affected by a local privilege escalation via wide permissions on CRI directory

containerd is an open-source container runtime. Versions 0.1.0 through 1.7.28, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4 and 2.2.0-beta.0 through 2.2.0-rc.1 have an overly broad default permission vulnerability. Directory paths /var/lib/containerd,...

7.3CVSS6.8AI score0.00159EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2025/11/06 6:36 p.m.3 views

CVE-2024-25621

containerd is an open-source container runtime. Versions 0.1.0 through 1.7.28, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4 and 2.2.0-beta.0 through 2.2.0-rc.1 have an overly broad default permission vulnerability. Directory paths /var/lib/containerd,...

7.8CVSS7.6AI score0.00159EPSS
Exploits1
CNNVD
CNNVD
added 2025/11/06 12:0 a.m.4 views

runc 安全漏洞

runc is an Open Container Initiative open source CLI Command Line Interface tool for generating and running containers according to the OCI specification. A security vulnerability exists in runc versions 1.2.7, 1.3.2, and 1.4.0-rc.2, which stems from an attacker's ability to misdirect a write...

7.5CVSS6.4AI score0.00523EPSS
Exploits1References22
Cvelist
Cvelist
added 2025/11/05 11:14 p.m.10 views

CVE-2025-62596 youki container escape and denial of service due to arbitrary write gadgets and procfs write redirects

Youki is a container runtime written in Rust. In versions 0.5.6 and below, youki’s apparmor handling performs insufficiently strict write-target validation, and when combined with path substitution during pathname resolution, can allow writes to unintended procfs locations. While resolving a path...

7.3CVSS0.00243EPSS
Exploits0References5
Rows per page
Query Builder