Containerd Security Vulnerabilities and Issues — Containerd CVE List

Lucene search

LinuxfoundationContainerd

4 matches found

CVE•added 2022/06/09 2:15 p.m.•792 views

CVE-2022-31030

containerd is an open source container runtime. A bug was found in the containerd's CRI implementation where programs inside a container can cause the containerd daemon to consume memory without bound during invocation of the ExecSync API. This can cause containerd to consume all available memory o...

5.5CVSS5.9AI score0.00109EPSS

CVE•added 2022/03/03 2:15 p.m.•490 views

CVE-2022-23648

containerd is a container runtime available as a daemon for Linux and Windows. A bug was found in containerd prior to versions 1.6.1, 1.5.10, and 1.14.12 where containers launched through containerd’s CRI implementation on Linux with a specially-crafted image configuration could gain access to read...

7.5CVSS7.8AI score0.0617EPSS

CVE•added 2022/12/07 11:15 p.m.•471 views

CVE-2022-23471

containerd is an open source container runtime. A bug was found in containerd's CRI implementation where a user can exhaust memory on the host. In the CRI stream server, a goroutine is launched to handle terminal resize events if a TTY is requested. If the user's process fails to launch due to, for...

6.5CVSS6.8AI score0.00215EPSS

CVE•added 2022/01/05 7:15 p.m.•187 views

CVE-2021-43816

containerd is an open source container runtime. On installations using SELinux, such as EL8 (CentOS, RHEL), Fedora, or SUSE MicroOS, with containerd since v1.5.0-beta.0 as the backing container runtime interface (CRI), an unprivileged pod scheduled to the node may bind mount, via hostPath volume, a...

9.1CVSS8.4AI score0.00147EPSS