Lucene search
K

349 matches found

Fedora
Fedora
added 2022/05/07 5:6 a.m.39 views

[SECURITY] Fedora 36 Update: containerd-1.6.2-2.fc36

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.5CVSS10AI score0.03931EPSS
Exploits0
Fedora
Fedora
added 2022/05/07 4:49 a.m.42 views

[SECURITY] Fedora 36 Update: containerd-1.6.2-1.fc36

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

5.9CVSS6.4AI score0.00492EPSS
Exploits0
Fedora
Fedora
added 2022/04/28 5:55 a.m.32 views

[SECURITY] Fedora 34 Update: containerd-1.6.2-3.fc34

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.5CVSS10AI score0.03931EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/04/21 12:0 a.m.60 views

EulerOS 2.0 SP10 : docker-engine (EulerOS-SA-2022-1482)

According to the versions of the docker-engine packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In containerd an industry-standard container runtime before version 1.2.14 there is a credential leaking vulnerability. If a container...

6.8CVSS6.1AI score0.02209EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2022/04/20 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2022-1501)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.9AI score0.02209EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2022/04/14 12:0 a.m.4 views

PT-2022-18549 · Cri-O +2 · Cri-O +2

Name of the Vulnerable Software and Affected Versions: cri-o versions prior to v1.24.0 Description: A flaw was found in cri-o where containers were incorrectly started with non-empty default permissions, allowing an attacker with access to programs with inheritable file capabilities to elevate...

7.8CVSS5.7AI score0.02827EPSS
Exploits2References21
Fedora
Fedora
added 2022/04/11 5:41 p.m.41 views

[SECURITY] Fedora 34 Update: containerd-1.6.2-2.fc34

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

5.9CVSS6.4AI score0.00492EPSS
Exploits0
CNNVD
CNNVD
added 2022/03/30 12:0 a.m.2 views

crun 安全漏洞

crun is an OCI Open Container Initiative container runtime library written in C. The vulnerability is caused by a vulnerability in a product that incorrectly starts containers with non-empty default privileges. A security vulnerability exists in crun that stems from an affected product incorrectl...

6.8CVSS7.5AI score0.01225EPSS
Exploits0References23
Fedora
Fedora
added 2022/03/26 3:49 p.m.34 views

[SECURITY] Fedora 36 Update: containerd-1.6.1-1.fc36

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.5CVSS7.9AI score0.27392EPSS
Exploits4
RedHat Linux
RedHat Linux
added 2022/03/22 3:13 p.m.3 views

CRI-O: Arbitrary code execution in cri-o via abusing “kernel.core_pattern” kernel parameter

A flaw was found in CRI-O in the way it set kernel options for a pod. This issue allows anyone with rights to deploy a pod on a Kubernetes cluster that uses the CRI-O runtime to achieve a container escape and arbitrary code execution as root on the cluster node, where the malicious pod was deploy...

9CVSS6.2AI score0.18561EPSS
Exploits0References5
Fedora
Fedora
added 2022/03/22 3:43 a.m.35 views

[SECURITY] Fedora 35 Update: containerd-1.6.1-1.fc35

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.5CVSS7.9AI score0.27392EPSS
Exploits4
Fedora
Fedora
added 2022/03/22 3:19 a.m.35 views

[SECURITY] Fedora 34 Update: containerd-1.6.1-1.fc34

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.5CVSS7.9AI score0.27392EPSS
Exploits4
The Hacker News
The Hacker News
added 2022/03/17 7:37 a.m.53 views

New Vulnerability in CRI-O Engine Lets Attackers Escape Kubernetes Containers

A newly disclosed security vulnerability in the Kubernetes container engine CRI-O called cr8escape could be exploited by an attacker to break out of containers and obtain root access to the host. "Invocation of CVE-2022-0811 can allow an attacker to perform a variety of actions on objectives,...

9CVSS0.1AI score0.18561EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2022/03/16 10:40 a.m.6 views

cri-o: pod with access to 'hostIPC' and 'hostNetwork' kernel namespace allows sysctl from the list of safe sysctls to be applied to the host

An incorrect sysctls validation vulnerability was found in CRI-O. The sysctls from the list of "safe" sysctls specified for the cluster 0 will be applied to the host if an attacker can create a pod with a hostIPC and hostNetwork kernel namespace...

4.9CVSS6AI score0.00756EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/03/16 10:38 a.m.2 views

cri-o: pod with access to 'hostIPC' and 'hostNetwork' kernel namespace allows sysctl from the list of safe sysctls to be applied to the host

An incorrect sysctls validation vulnerability was found in CRI-O. The sysctls from the list of "safe" sysctls specified for the cluster 0 will be applied to the host if an attacker can create a pod with a hostIPC and hostNetwork kernel namespace...

4.9CVSS6AI score0.00756EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2022/03/15 12:0 a.m.12 views

PT-2022-6526 · Mirantis +7 · Mirantis Container Runtime +7

Name of the Vulnerable Software and Affected Versions: Moby versions prior to 23.0.3 Moby versions prior to 20.10.24 Mirantis Container Runtime versions prior to 20.10.16 Description: The issue is related to the use of an unsecured alternative channel in the Swarm Mode of the Moby daemon componen...

10CVSS6.7AI score0.04561EPSS
Exploits2References115
Microsoft CVE
Microsoft CVE
added 2022/03/11 8:0 a.m.2 views

Insecure handling of image volumes in containerd CRI plugin

...

7.5CVSS6.7AI score0.27392EPSS
Exploits4
RedHat Linux
RedHat Linux
added 2022/03/10 2:59 p.m.1 views

cri-o: pod with access to 'hostIPC' and 'hostNetwork' kernel namespace allows sysctl from the list of safe sysctls to be applied to the host

An incorrect sysctls validation vulnerability was found in CRI-O. The sysctls from the list of "safe" sysctls specified for the cluster 0 will be applied to the host if an attacker can create a pod with a hostIPC and hostNetwork kernel namespace...

4.9CVSS6AI score0.00756EPSS
Exploits0References6
OSV
OSV
added 2022/03/03 2:15 p.m.1 views

DEBIAN-CVE-2022-23648

containerd is a container runtime available as a daemon for Linux and Windows. A bug was found in containerd prior to versions 1.6.1, 1.5.10, and 1.14.12 where containers launched through containerd’s CRI implementation on Linux with a specially-crafted image configuration could gain access to...

7.5CVSS8.3AI score0.27392EPSS
Exploits4References1
OSV
OSV
added 2022/03/02 12:0 a.m.2 views

UBUNTU-CVE-2022-23648

containerd is a container runtime available as a daemon for Linux and Windows. A bug was found in containerd prior to versions 1.6.1, 1.5.10, and 1.14.12 where containers launched through containerd’s CRI implementation on Linux with a specially-crafted image configuration could gain access to...

7.5CVSS6.8AI score0.27392EPSS
Exploits4References6
Rows per page
Query Builder