Search CVE reports
11 – 12 of 12 results
containerd is a container runtime. A time-of-check to time-of-use (TOCTOU) vulnerability was found in containerd v2.1.0. While unpacking an image during an image pull, specially crafted container images could arbitrarily modify...
2 affected packages
containerd, containerd-app
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| containerd | — | Not affected | Not affected | Not affected | Not affected |
| containerd-app | — | Not affected | Not affected | Not affected | — |
Some fixes available 12 of 14
containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a `UID:GID` larger than the maximum 32-bit signed integer can...
2 affected packages
containerd, containerd-app
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| containerd | Not affected | Fixed | Fixed | Fixed | Fixed |
| containerd-app | Fixed | Fixed | Fixed | Fixed | — |