2 matches found
DEBIAN-CVE-2026-53489
containerd is an open-source container runtime. Versions prior to 2.3.2, 2.2.5 and 2.1.9 contain a bug where the CRI plugin restores container.log from a checkpoint image without validating a symlinked path. This could result in reading an arbitrary file on the host via kubectl logs. This issue h...
CVE-2026-53489 vulnerabilities
Vulnerabilities for packages: trivy-operator, headlamp, docker, envoy-gateway, xeol, fuse-overlayfs-snapshotter, k3s, buildkitd, rancher, dagger, helm, helm-set-status, teleport, tw, consul-k8s, kargo, syft, helm-push, k8sgpt, kots, cluster-api-helm-controller, newrelic-infrastructure-agent,...