Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE: nvidia-container-toolkit Critical Data Tampering Fix 2025:4187-1

suse
Calendar Grey November 24, 2025
Dist Suse Esm H88
Critical update for nvidia-container-toolkit resolves multiple security issues, ensures system protection.
* bsc#1231032 * bsc#1231033 * bsc#1232855 * bsc#1236496 * bsc#1236497

Summary

## This update for nvidia-container-toolkit fixes the following issues: * Update to version 1.18.0: * This is a major release and includes the following high-level changes: * The default mode of the NVIDIA Container Runtime has been updated to make use of a just-in-time-generated CDI specification instead of defaulting to the legacy mode. * Added a systemd unit to generate CDI specifications for available devices automatically. This allows native CDI support in container engines such as Docker and Podman to be used without additional steps. * Security issues fixed: * CVE-2024-0133: Fixed data tampering in host file system via specially crafted container image (bsc#1231032) * CVE-2024-0132: Fixed time-of-check time-of-use (TOCTOU) race condition in

Topics%20covered

Topics Covered

security advisory critical SuSE data tampering container escape Nvidia Container Toolkit

References

* bsc#1231032

* bsc#1231033

* bsc#1232855

* bsc#1236496

* bsc#1236497

* bsc#1236498

* bsc#1237085

* bsc#1246614

* bsc#1246860

Cross-

* CVE-2024-0132

* CVE-2024-0133

* CVE-2024-0134

* CVE-2024-0135

* CVE-2024-0136

* CVE-2024-0137

* CVE-2025-23266

* CVE-2025-23267

* CVE-2025-23359

CVSS scores:

* CVE-2024-0132 ( SUSE ): 8.9

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

* CVE-2024-0132 ( SUSE ): 8.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

* CVE-2024-0132 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

* CVE-2024-0132 ( NVD ): 8.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

* CVE-2024-0133 ( SUSE ): 2.1

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

* CVE-2024-0133 ( SUSE ): 4.7 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:4187-1
Release Date: 2025-11-24T07:59:26Z
Rating: critical

Topics%20covered

Topics Covered

security advisory critical SuSE data tampering container escape Nvidia Container Toolkit

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here