GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Thu May 27, 2021 3:26 pm Post subject: [ GLSA 202105-33 ] containerd |
 |
|
Gentoo Linux Security Advisory
Title: containerd: Multiple vulnerabilities (GLSA 202105-33)
Severity: high
Exploitable: local
Date: 2021-05-26
Bug(s): #758137, #775329
ID: 202105-33
Synopsis
Multiple vulnerabilities have been found in containerd, the worst
of which could result in privilege escalation.
Background
Containerd is a daemon with an API and a command line client, to manage
containers on one machine. It uses runC to run containers according to
the OCI specification.
Affected Packages
Package: app-emulation/containerd
Vulnerable: < 1.4.4
Unaffected: >= 1.4.4
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in containerd. Please
review the CVE identifiers referenced below for details.
Impact
A local attacker, able to run a malicious container in the same network
namespace as the shim, could possibly escalate privileges. Furthermore,
an attacker could disclose sensitive information.
Workaround
There is no known workaround at this time.
Resolution
All containerd users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=app-emulation/containerd-1.4.4"
|
References
CVE-2020-15257
CVE-2021-21334 |
|
News & Announcements
