1683 matches found
SUSE-SU-2020:3938-1 Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork
This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues: Security issues fixed: - CVE-2020-15257: Fixed a privilege escalation in containerd bsc1178969. Non-security issues fixed: - Update to containerd v1.3.9, which is needed for Docker...
Security Bulletin: IBM Cloud Kubernetes Service is affected by a containerd security vulnerability (CVE-2020–15257)
Summary IBM Cloud Kubernetes Service is affected by a security vulnerability in containerd that could allow containers running in the host network namespace as root UID 0 to gain the host root privileges CVE-2020–15257 Vulnerability Details CVEID: CVE-2020-15257 Description: Containerd could allo...
[SECURITY] Fedora 33 Update: containerd-1.4.3-1.fc33
Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Lin ux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervisio...
Fedora: Security Advisory for containerd (FEDORA-2020-baeb8dbaea)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora 33 : containerd (2020-baeb8dbaea)
Security fix for CVE-2020-15257 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...
Exploit for Incorrect Resource Transfer Between Spheres in Linuxfoundation Containerd
ABSTRACT SHIMMER CVE-2020-15257 This repo contains proof-of...
[ASA-202012-8] containerd: privilege escalation
Arch Linux Security Advisory ASA-202012-8 ========================================= Severity: High Date : 2020-12-05 CVE-ID : CVE-2020-15257 Package : containerd Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-1309 Summary ======= The package containerd before...
Privilege Escalation
containerd is vulnerable to privilege escalation. Access controls for the shim's API socket verified that the connecting process had an effective UID of 0, but did not otherwise restrict access to the abstract Unix domain socket. This would allow malicious containers running in the same network...
Oracle Linux 7 : docker-cli / docker-engine (ELSA-2020-5966)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5966 advisory. - Fix for CVE-2020-15257 - Fix for CVE-2020-15157 - Address CVE-2020-16845 - update to 19.03.11 for CVE-2020-13401 - apply...
containerd security update
1.3.9-2 - BUILDINFO: commit=4737bd3784f16c18474a60d8678371108f995d7c - Addresses CVE-2020-15257 1.3.9-1 - Added Oracle specific build files...
Oracle Linux 7 : containerd (ELSA-2020-5964)
The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-5964 advisory. - Addresses CVE-2020-15257 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not test...
Photon OS 3.0: Containerd PHSA-2020-3.0-0168
An update of the containerd package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0168. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Photon OS 2.0: Containerd PHSA-2020-2.0-0301
An update of the containerd package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0301. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Moderate Photon OS Security Update - PHSA-2020-0168
Updates of 'containerd' packages of Photon OS have been released...
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0301
An update of 'containerd' packages of Photon OS has been released...
Moderate Photon OS Security Update - PHSA-2020-3.0-0168
Updates of 'containerd' packages of Photon OS have been released...
CVE-2020-15257
A flaw was found in containerd. Access controls for the shim's API socket verified that a connecting process had an effective UID of 0, but otherwise did not restrict access to the abstract Unix domain socket. This could allow malicious containers running in the same network namespace as the shim...
CVE-2020-15257
containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows. In containerd before versions 1.3.9 and 1.4.3, the containerd-shim API is improperly exposed to host network containers. Access controls for the shim’s API socket verified that the connecting...
CVE-2020-15257
containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows. In containerd before versions 1.3.9 and 1.4.3, the containerd-shim API is improperly exposed to host network containers. Access controls for the shim’s API socket verified that the connecting...
DEBIAN-CVE-2020-15257
containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows. In containerd before versions 1.3.9 and 1.4.3, the containerd-shim API is improperly exposed to host network containers. Access controls for the shim’s API socket verified that the connecting...