Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 603
Alerts This Week
Warning Icon 1 603

Ubuntu 6202-1 Critical: Containerd Denial Of Service And Access Control

ubuntu
Calendar Grey July 5, 2023
Dist Ubuntu Esm H88
Ubuntu Security Advisory USN-6203-1 pertains to vulnerabilities within containerd that impact various Ubuntu versions, providing essential patches.
Several security issues were fixed in containerd.

Summary

Several security issues were fixed in containerd.

Software Description:

- containerd: daemon to control runC

Details:

David Korczynski and Adam Korczynski discovered that containerd

incorrectly processed certain images with large files. An attacker

could possibly use this issue to cause containerd to crash,

resulting in a denial of service. (CVE-2023-25153)

It was discovered that containerd incorrectly set up supplementary

groups inside a container. An attacker with direct access to the

container could possibly use this issue to obtain sensitive information

or execute code with higher privileges. (CVE-2023-25173)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 23.04:
   containerd                      1.6.12-0ubuntu3.1

Ubuntu 22.10:
   containerd                      1.6.12-0ubuntu1~22.10.2

Ubuntu 22.04 LTS:
   containerd                      1.6.12-0ubuntu1~22.04.3

Ubuntu 20.04 LTS:
   containerd                      1.6.12-0ubuntu1~20.04.3

Ubuntu 18.04 LTS (Available with Ubuntu Pro):
   containerd                      1.6.12-0ubuntu1~18.04.1+esm1

Ubuntu 16.04 LTS (Available with Ubuntu Pro):
   containerd                      1.2.6-0ubuntu1~16.04.6+esm4

In general, a standard system update will make all the necessary changes.

References

 

  CVE-2023-25153, CVE-2023-25173

Severity
critical
Lowest
Low
Medium
High
Critical

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.