Affected by GO-2022-0354
and 8 other vulnerabilities
GO-2022-0354: Code Injection in CRI-O in github.com/cri-o/cri-o
GO-2022-0363: Sysctls applied to containers with host IPC or host network namespaces can affect the host in github.com/cri-o/cri-o
GO-2022-0426: Incorrect Default Permissions in CRI-O in github.com/cri-o/cri-o
GO-2022-0480: Node DOS by way of memory exhaustion through ExecSync request in CRI-O in github.com/cri-o/cri-o
GO-2022-0608: Incorrect Permission Assignment for Critical Resource in CRI-O in github.com/cri-o/cri-o
GO-2022-1014: CRI-O incorrect handling of supplementary groups may lead to sensitive information disclosure in github.com/cri-o/cri-o
GO-2022-1206: CRI-O vulnerable to /etc/passwd tampering resulting in Privilege Escalation in github.com/cri-o/cri-o
GO-2024-2458: CRI-O's pods can break out of resource confinement on cgroupv2 in github.com/cri-o/cri-o
GO-2024-2791: CRI-O vulnerable to an arbitrary systemd property injection in github.com/cri-o/cri-o
command
Version:
v1.21.0
Opens a new window with list of versions in this module.
Published: Apr 13, 2021
License: Apache-2.0
Opens a new window with license information.
Imports: 13
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Click to show internal directories.
Click to hide internal directories.