cri-o: Arbitrary command injection via pod annotation

A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an arbitrary annotation may perform an arbitrary action on the host system...

PT-2024-3765 · Unknown +2 · Cri-O Container Engine +2

Name of the Vulnerable Software and Affected Versions: CRI-O Container Engine versions prior to the fixed version Description: A flaw was found in CRI-O, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an arbitrary annotation may perfor...