vulnerability
Ubuntu: USN-4653-2: containerd vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Jan 13, 2021 | Jan 14, 2021 | Feb 19, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Jan 13, 2021
Added
Jan 14, 2021
Modified
Feb 19, 2025
Description
containerd packages from USN-4653-1 were reverted in order to fix a dependency issue with the docker package. This new update fixes the same issues as the previous one. We apologize for the inconvenience.
Original advisory details:
It was discovered that access controls for the shim’s API socket did not restrict access to the abstract unix domain socket in some cases. An attacker could use this vulnerability to run containers with elevated privileges.
Solutions
ubuntu-upgrade-containerdubuntu-upgrade-golang-github-containerd-containerd-devubuntu-upgrade-golang-github-docker-containerd-dev
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.