vulnerability
Ubuntu: USN-7983-1 (CVE-2025-64329): containerd vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:S/C:N/I:N/A:C) | Nov 7, 2025 | Jan 30, 2026 | Feb 2, 2026 |
Severity
5
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:C)
Published
Nov 7, 2025
Added
Jan 30, 2026
Modified
Feb 2, 2026
Description
David Leadbeater discovered that containerd incorrectly set certain
directory path permissions. An attacker could possibly use this issue to
achieve unauthorised access to the files. (CVE-2024-25621)
It was discovered that containerd did not properly handle the execution
of the goroutine of container attach. An attacker could possibly use this
issue to cause a denial of service. (CVE-2025-64329)
Solutions
ubuntu-pro-upgrade-containerdubuntu-pro-upgrade-golang-github-containerd-containerd-devubuntu-pro-upgrade-golang-github-docker-containerd-dev
References
- CVE-2025-64329
- https://attackerkb.com/topics/CVE-2025-64329
- CWE-401
- UBUNTU-USN-7983-1
- URL-https://github.com/containerd/containerd/commit/083b53cd6f19b5de7717b0ce92c11bdf95e612df
- URL-https://github.com/containerd/containerd/security/advisories/GHSA-m6hq-p25p-ffr2
- URL-https://ubuntu.com/security/notices/USN-7983-1
- URL-https://www.cve.org/CVERecord?id=CVE-2025-64329
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.