10 matches found
Security update for trivy (important)
openSUSE Security Update: Security update for trivy Announcement ID: openSUSE-SU-2025:0489-1 Rating: important References: 1239225 1239385 1240466 1241724 1243633 1246730 1248897 1248937 1250625 1251363 1251547 1253512 1253786 1253977 Cross-References: CVE-2025-11065 CVE-2025-22868 CVE-2025-22869...
Security update for trivy (important)
openSUSE Security Update: Security update for trivy Announcement ID: openSUSE-SU-2025:0490-1 Rating: important References: 1239225 1239385 1240466 1241724 1243633 1246730 1248897 1248937 1250625 1251363 1251547 1253512 1253786 1253977 Cross-References: CVE-2025-11065 CVE-2025-22868 CVE-2025-22869...
CVE-2025-47291 affecting package containerd2 for versions less than 2.0.0-12
CVE-2025-47291 affecting package containerd2 for versions less than 2.0.0-12. A patched version of the package is available...
SUSE CVE-2025-47291
containerd is an open-source container runtime. A bug was found in the containerd's CRI implementation where containerd, starting in version 2.0.1 and prior to version 2.0.5, doesn't put usernamespaced containers under the Kubernetes' cgroup hierarchy, therefore some Kubernetes limits are not...
CVE-2025-47291 vulnerabilities
Vulnerabilities for packages: zot, k3s, melange, wolfictl...
CVE-2025-47291
containerd is an open-source container runtime. A bug was found in the containerd's CRI implementation where containerd, starting in version 2.0.1 and prior to version 2.0.5, doesn't put usernamespaced containers under the Kubernetes' cgroup hierarchy, therefore some Kubernetes limits are not...
CVE-2025-47291
creationtimestamp| type| source ---|---|--- 2025-05-21 17:43:13+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17158 2025-05-21 21:27:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lppk5ldyeq2p...
CVE-2025-47291
CVE-2025-47291 concerns containerd’s CRI: versions 2.0.1–2.0.4 do not place usernamespaced containers under the Kubernetes cgroup hierarchy, which may cause Kubernetes limits to not be honored and could lead to node denial of service. The issue is fixed in containerd 2.0.5+ and 2.1.0+. Remediatio...
CVE-2025-47291 containerd CRI plugin: Incorrect cgroup hierarchy assignment for containers running in usernamespaced Kubernetes pods.
containerd is an open-source container runtime. A bug was found in the containerd's CRI implementation where containerd, starting in version 2.0.1 and prior to version 2.0.5, doesn't put usernamespaced containers under the Kubernetes' cgroup hierarchy, therefore some Kubernetes limits are not...
CVE-2025-47291 containerd CRI plugin: Incorrect cgroup hierarchy assignment for containers running in usernamespaced Kubernetes pods.
containerd is an open-source container runtime. A bug was found in the containerd's CRI implementation where containerd, starting in version 2.0.1 and prior to version 2.0.5, doesn't put usernamespaced containers under the Kubernetes' cgroup hierarchy, therefore some Kubernetes limits are not...