Critical: Red Hat Security Advisory: OpenShift Container Platform 4.19.34 bug fix and security update

Red Hat OpenShift Container Platform release 4.19.34 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.19. Red Hat Product Security has rated this update as having a...

EulerOS 2.0 SP13 : kata-containers (EulerOS-SA-2026-2292)

"According to the versions of the kata-containers package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input...

EulerOS 2.0 SP13 : kata-containers (EulerOS-SA-2026-2335)

"According to the versions of the kata-containers package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input...

openshell-sandbox-poc

OpenShell + Kata Containers: Dual-Protection PoC A proof-of-c...

EulerOS 2.0 SP11 : kata-containers (EulerOS-SA-2026-2246)

"According to the versions of the kata-containers package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input...

EulerOS 2.0 SP11 : kata-containers (EulerOS-SA-2026-2208)

"According to the versions of the kata-containers package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input...

OESA-2026-2557 kata-containers security update

This is core component of Kata Container, to make it work, you need a isulad/docker engine. Security Fixes: 'This vulnerability was fixed in Kata Containers 3.31.0:', 'Description:\n\nIn the runtime-rs standalone virtio-fs path, Kata Containers runs virtiofsd\nas root with --sandbox none --seccom...

CVE-2026-33814 affecting package kata-containers for versions less than 3.19.1.kata3-4

CVE-2026-33814 affecting package kata-containers for versions less than 3.19.1.kata3-4. A patched version of the package is available...

CVE-2026-33814 affecting package kata-containers-cc for versions less than 3.15.0.aks0-12

CVE-2026-33814 affecting package kata-containers-cc for versions less than 3.15.0.aks0-12. A patched version of the package is available...

CVE-2026-39821 affecting package kata-containers for versions less than 3.19.1.kata3-3

CVE-2026-39821 affecting package kata-containers for versions less than 3.19.1.kata3-3. A patched version of the package is available...

CVE-2026-39821 affecting package kata-containers-cc for versions less than 3.15.0.aks0-11

CVE-2026-39821 affecting package kata-containers-cc for versions less than 3.15.0.aks0-11. A patched version of the package is available...

GHSA-RR59-XXVX-96QR Kata Containers have VM Escape via virtiofsd Argument Injection through Default-Enabled Pod Annotations

Summary Kata Containers ships with a default configuration that allows pod creators to inject arbitrary command-line arguments into the virtiofsd process through the io.katacontainers.config.hypervisor.virtiofsextraargs pod annotation. By injecting -o source=/ along with --no-announce-submounts a...

PT-2026-43453

Summary Kata Containers ships with a default configuration that allows pod creators to inject arbitrary command-line arguments into the virtiofsd process through the io.katacontainers.config.hypervisor.virtio fs extra args pod annotation. By injecting -o source=/ along with --no-announce-submount...

CVE-2026-44210

creationtimestamp| type| source ---|---|--- 2026-05-20 08:20:32+00:00| published-proof-of-concept| https://github.com/kata-containers/kata-containers/security/advisories/GHSA-rr59-xxvx-96qr...

CVE-2026-41602 affecting package kata-containers for versions less than 3.19.1.kata3-2

CVE-2026-41602 affecting package kata-containers for versions less than 3.19.1.kata3-2. A patched version of the package is available...

OESA-2026-2309 kata-containers-go security update

This is core component of Kata Container, to make it work, you need a isulad/docker engine. Security Fixes: A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64KB without newline characters. Due to limitations i...

CVE-2026-41602 affecting package kata-containers-cc for versions less than 3.15.0.aks0-10

CVE-2026-41602 affecting package kata-containers-cc for versions less than 3.15.0.aks0-10. A patched version of the package is available...

CVE-2026-41326

A flaw was found in Kata Containers. An oversight in the CopyFile policy and perhaps the CopyFile handler allows untrusted hosts to write to arbitrary locations inside the guest workload image. This can be used to overwrite binaries inside the guest and exfiltrate data from containers; even those...

CVE-2026-41326

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. From v3.4.0 to v3.28.0, an oversight in the CopyFile policy and perhaps the CopyFile handler allows untrusted hosts to write to arbitrary locations...

CVE-2026-41326 Kata Containers: CopyFile Policy Subversion via Symlinks

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. From v3.4.0 to v3.28.0, an oversight in the CopyFile policy and perhaps the CopyFile handler allows untrusted hosts to write to arbitrary locations...