Lucene search
K

1683 matches found

OSV
OSV
added 2020/12/28 1:28 p.m.13 views

SUSE-SU-2020:3938-1 Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork

This update for containerd, docker, docker-runc, golang-github-docker-libnetwork fixes the following issues: Security issues fixed: - CVE-2020-15257: Fixed a privilege escalation in containerd bsc1178969. Non-security issues fixed: - Update to containerd v1.3.9, which is needed for Docker...

5.2CVSS5.7AI score0.03236EPSS
Exploits4References7
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/18 3:6 p.m.37 views

Security Bulletin: IBM Cloud Kubernetes Service is affected by a containerd security vulnerability (CVE-2020–15257)

Summary IBM Cloud Kubernetes Service is affected by a security vulnerability in containerd that could allow containers running in the host network namespace as root UID 0 to gain the host root privileges CVE-2020–15257 Vulnerability Details CVEID: CVE-2020-15257 Description: Containerd could allo...

5.2CVSS0.3AI score0.03236EPSS
Exploits4Affected Software1
Fedora
Fedora
added 2020/12/10 1:15 a.m.49 views

[SECURITY] Fedora 33 Update: containerd-1.4.3-1.fc33

Containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Lin ux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervisio...

5.2CVSS2.6AI score0.03236EPSS
Exploits4
OpenVAS
OpenVAS
added 2020/12/10 12:0 a.m.27 views

Fedora: Security Advisory for containerd (FEDORA-2020-baeb8dbaea)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.2CVSS5.6AI score0.03236EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2020/12/10 12:0 a.m.38 views

Fedora 33 : containerd (2020-baeb8dbaea)

Security fix for CVE-2020-15257 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...

5.2CVSS6.3AI score0.03236EPSS
Exploits4References2
GithubExploit
GithubExploit
added 2020/12/07 8:47 a.m.884 views

Exploit for Incorrect Resource Transfer Between Spheres in Linuxfoundation Containerd

ABSTRACT SHIMMER CVE-2020-15257 This repo contains proof-of...

5.2CVSS6.3AI score0.03236EPSS
Exploits4
ArchLinux
ArchLinux
added 2020/12/05 12:0 a.m.146 views

[ASA-202012-8] containerd: privilege escalation

Arch Linux Security Advisory ASA-202012-8 ========================================= Severity: High Date : 2020-12-05 CVE-ID : CVE-2020-15257 Package : containerd Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-1309 Summary ======= The package containerd before...

5.2CVSS1.9AI score0.03236EPSS
Exploits4References5
Veracode
Veracode
added 2020/12/04 4:29 p.m.33 views

Privilege Escalation

containerd is vulnerable to privilege escalation. Access controls for the shim's API socket verified that the connecting process had an effective UID of 0, but did not otherwise restrict access to the abstract Unix domain socket. This would allow malicious containers running in the same network...

5.2CVSS3.5AI score0.03236EPSS
Exploits4References10Affected Software4
Tenable Nessus
Tenable Nessus
added 2020/12/04 12:0 a.m.40 views

Oracle Linux 7 : docker-cli / docker-engine (ELSA-2020-5966)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-5966 advisory. - Fix for CVE-2020-15257 - Fix for CVE-2020-15157 - Address CVE-2020-16845 - update to 19.03.11 for CVE-2020-13401 - apply...

9.3CVSS7AI score0.9857EPSS
Exploits35References2
Oracle linux
Oracle linux
added 2020/12/03 12:0 a.m.69 views

containerd security update

1.3.9-2 - BUILDINFO: commit=4737bd3784f16c18474a60d8678371108f995d7c - Addresses CVE-2020-15257 1.3.9-1 - Added Oracle specific build files...

5.2CVSS2.2AI score0.03236EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2020/12/03 12:0 a.m.37 views

Oracle Linux 7 : containerd (ELSA-2020-5964)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-5964 advisory. - Addresses CVE-2020-15257 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not test...

5.2CVSS6.4AI score0.03236EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2020/12/03 12:0 a.m.81 views

Photon OS 3.0: Containerd PHSA-2020-3.0-0168

An update of the containerd package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0168. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

5.2CVSS6.6AI score0.03236EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2020/12/03 12:0 a.m.33 views

Photon OS 2.0: Containerd PHSA-2020-2.0-0301

An update of the containerd package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0301. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

5.2CVSS6.6AI score0.03236EPSS
Exploits4References2
Photon
Photon
added 2020/12/02 12:0 a.m.29 views

Moderate Photon OS Security Update - PHSA-2020-0168

Updates of 'containerd' packages of Photon OS have been released...

3.6CVSS2.1AI score0.03236EPSS
Exploits4
Photon
Photon
added 2020/12/02 12:0 a.m.40 views

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0301

An update of 'containerd' packages of Photon OS has been released...

3.6CVSS0.9AI score0.03236EPSS
Exploits4
Photon
Photon
added 2020/12/02 12:0 a.m.39 views

Moderate Photon OS Security Update - PHSA-2020-3.0-0168

Updates of 'containerd' packages of Photon OS have been released...

5.2CVSS2.1AI score0.03236EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2020/12/01 9:0 a.m.48 views

CVE-2020-15257

A flaw was found in containerd. Access controls for the shim's API socket verified that a connecting process had an effective UID of 0, but otherwise did not restrict access to the abstract Unix domain socket. This could allow malicious containers running in the same network namespace as the shim...

8.8CVSS5.6AI score0.03236EPSS
Exploits4References3
NVD
NVD
added 2020/12/01 3:15 a.m.22 views

CVE-2020-15257

containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows. In containerd before versions 1.3.9 and 1.4.3, the containerd-shim API is improperly exposed to host network containers. Access controls for the shim’s API socket verified that the connecting...

5.2CVSS5.6AI score0.03236EPSS
Exploits4References6
OSV
OSV
added 2020/12/01 3:15 a.m.27 views

CVE-2020-15257

containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows. In containerd before versions 1.3.9 and 1.4.3, the containerd-shim API is improperly exposed to host network containers. Access controls for the shim’s API socket verified that the connecting...

5.2CVSS6.5AI score
Exploits0References6
OSV
OSV
added 2020/12/01 3:15 a.m.5 views

DEBIAN-CVE-2020-15257

containerd is an industry-standard container runtime and is available as a daemon for Linux and Windows. In containerd before versions 1.3.9 and 1.4.3, the containerd-shim API is improperly exposed to host network containers. Access controls for the shim’s API socket verified that the connecting...

5.2CVSS6.2AI score0.03236EPSS
Exploits4References1
Rows per page
Query Builder