Количество 10
Количество 10
CVE-2023-25153
containerd is an open source container runtime. Before versions 1.6.18 and 1.5.18, when importing an OCI image, there was no limit on the number of bytes read for certain files. A maliciously crafted image with a large file where a limit was not applied could cause a denial of service. This bug has been fixed in containerd 1.6.18 and 1.5.18. Users should update to these versions to resolve the issue. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images.
CVE-2023-25153
containerd is an open source container runtime. Before versions 1.6.18 and 1.5.18, when importing an OCI image, there was no limit on the number of bytes read for certain files. A maliciously crafted image with a large file where a limit was not applied could cause a denial of service. This bug has been fixed in containerd 1.6.18 and 1.5.18. Users should update to these versions to resolve the issue. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images.
CVE-2023-25153
containerd is an open source container runtime. Before versions 1.6.18 and 1.5.18, when importing an OCI image, there was no limit on the number of bytes read for certain files. A maliciously crafted image with a large file where a limit was not applied could cause a denial of service. This bug has been fixed in containerd 1.6.18 and 1.5.18. Users should update to these versions to resolve the issue. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images.
CVE-2023-25153
CVE-2023-25153
containerd is an open source container runtime. Before versions 1.6.18 ...
GHSA-259w-8hf6-59c2
OCI image importer memory exhaustion in github.com/containerd/containerd
BDU:2023-01489
Уязвимость среды выполнения контейнеров Containerd, связанная с отсутствием ограничения на количество байтов, считываемых для определенных файлов, при импорте образов OCI, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2023:1827-1
Security update for containerd
SUSE-SU-2023:1826-1
Security update for containerd
ROS-20230322-02
Множественные уязвимости containerd
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-25153 containerd is an open source container runtime. Before versions 1.6.18 and 1.5.18, when importing an OCI image, there was no limit on the number of bytes read for certain files. A maliciously crafted image with a large file where a limit was not applied could cause a denial of service. This bug has been fixed in containerd 1.6.18 and 1.5.18. Users should update to these versions to resolve the issue. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images. | CVSS3: 6.2 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-25153 containerd is an open source container runtime. Before versions 1.6.18 and 1.5.18, when importing an OCI image, there was no limit on the number of bytes read for certain files. A maliciously crafted image with a large file where a limit was not applied could cause a denial of service. This bug has been fixed in containerd 1.6.18 and 1.5.18. Users should update to these versions to resolve the issue. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images. | CVSS3: 5.5 | 0% Низкий | больше 2 лет назад |
 | CVE-2023-25153 containerd is an open source container runtime. Before versions 1.6.18 and 1.5.18, when importing an OCI image, there was no limit on the number of bytes read for certain files. A maliciously crafted image with a large file where a limit was not applied could cause a denial of service. This bug has been fixed in containerd 1.6.18 and 1.5.18. Users should update to these versions to resolve the issue. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images. | CVSS3: 6.2 | 0% Низкий | больше 2 лет назад |
 | CVSS3: 5.5 | 0% Низкий | больше 2 лет назад | |
| CVE-2023-25153 containerd is an open source container runtime. Before versions 1.6.18 ... | CVSS3: 6.2 | 0% Низкий | больше 2 лет назад |
| GHSA-259w-8hf6-59c2 OCI image importer memory exhaustion in github.com/containerd/containerd | CVSS3: 5.5 | 0% Низкий | больше 2 лет назад |
 | BDU:2023-01489 Уязвимость среды выполнения контейнеров Containerd, связанная с отсутствием ограничения на количество байтов, считываемых для определенных файлов, при импорте образов OCI, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.5 | 0% Низкий | больше 2 лет назад |
 | SUSE-SU-2023:1827-1 Security update for containerd | около 2 лет назад | ||
| SUSE-SU-2023:1826-1 Security update for containerd | около 2 лет назад | ||
 | ROS-20230322-02 Множественные уязвимости containerd | CVSS3: 7.8 | около 2 лет назад |
Уязвимостей на страницу