GO-2026-5338 containerd: CRI checkpoint import allows local image tag poisoning in github.com/containerd/containerd

containerd: CRI checkpoint import allows local image tag poisoning in github.com/containerd/containerd...

[SECURITY] Fedora 43 Update: cri-o1.34-1.34.2-1.fc43

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

[SECURITY] Fedora 43 Update: cri-o1.32-1.32.10-1.fc43

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

[SECURITY] Fedora 42 Update: cri-o1.34-1.34.2-1.fc42

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

[SECURITY] Fedora 42 Update: cri-o1.32-1.32.10-1.fc42

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

[SECURITY] Fedora 41 Update: cri-o1.34-1.34.2-1.fc41

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

[SECURITY] Fedora 41 Update: cri-o1.32-1.32.10-1.fc41

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

containerd affected by a local privilege escalation via wide permissions on CRI directory

...

CVE-2024-25621 containerd affected by a local privilege escalation via wide permissions on CRI directory

containerd is an open-source container runtime. Versions 0.1.0 through 1.7.28, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4 and 2.2.0-beta.0 through 2.2.0-rc.1 have an overly broad default permission vulnerability. Directory paths /var/lib/containerd,...

[SECURITY] Fedora 41 Update: cri-o1.33-1.33.5-1.fc41

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

[SECURITY] Fedora 41 Update: cri-o1.31-1.31.13-1.fc41

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

[SECURITY] Fedora 42 Update: cri-o1.32-1.32.9-1.fc42

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...

Linux Distros Unpatched Vulnerability : CVE-2021-21334

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In containerd an industry-standard container runtime before versions 1.3.10 and 1.4.4, containers launched through containerd's CRI implementation through...

[SECURITY] Fedora 42 Update: cri-tools1.29-1.29.0-11.fc42

CLI and validation tools for Kubelet Container Runtime Interface CRI...

[SECURITY] Fedora 41 Update: cri-tools1.29-1.29.0-11.fc41

CLI and validation tools for Kubelet Container Runtime Interface CRI...

OESA-2022-2143 containerd security update

containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

AZL-11585 CVE-2022-23471 affecting package moby-containerd for versions less than 1.6.12-3

containerd is an open source container runtime. A bug was found in containerd's CRI implementation where a user can exhaust memory on the host. In the CRI stream server, a goroutine is launched to handle terminal resize events if a TTY is requested. If the user's process fails to launch due to, f...

The vulnerability of the CRI environment for Containerd implementations allows a attacker to trigger a service failure.

The vulnerability of the CRI environment for Containerd implementations is related to uncontrolled resource consumption. Exploiting this vulnerability can allow attackers to cause service failures...

Fedora: Security Advisory for cri-o (FEDORA-2022-5ef0bd9a27)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 36 Update: cri-o-1.24.1-3.fc36

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface...