Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/07/01 5:59 p.m.40 views

CVE-2026-53492 containerd CRI checkpoint restore CDI annotation smuggling

containerd is an open-source container runtime. In Versions prior to 2.3.2, 2.2.5 and 2.1.9, the CRI implementation improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during container restoration. When restoring a container from a...

8.4CVSS0.00412EPSS
Exploits0References1
OSV
OSV
added 2026/06/22 7:28 p.m.3 views

GO-2026-5064 containerd CRI checkpoint restore CDI annotation smuggling in github.com/containerd/containerd

containerd CRI checkpoint restore CDI annotation smuggling in github.com/containerd/containerd...

9.6CVSS5.8AI score0.00412EPSS
Exploits0References1
OSV
OSV
added 2026/06/19 7:35 p.m.7 views

GHSA-33VJ-92QQ-66HC containerd CRI checkpoint restore CDI annotation smuggling

Impact containerd's CRI implementation improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during container restoration. When restoring a container from a checkpoint, containerd preserves CDI-related annotations from the checkpoint archive...

8.4CVSS6AI score0.00412EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/06/19 7:35 p.m.22 views

containerd CRI checkpoint restore CDI annotation smuggling

Impact containerd's CRI implementation improperly trusts Container Device Interface CDI annotations found within untrusted checkpoint image metadata during container restoration. When restoring a container from a checkpoint, containerd preserves CDI-related annotations from the checkpoint archive...

9.6CVSS6AI score0.00412EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder