CVE-2021-32760

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host’s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set extended bits like setuid, setgid, and sticky. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. This bug has been fixed in containerd 1.5.4 and 1.4.8. As a workaround, ensure that users only pull images from trusted sources. Linux security modules (LSMs) like SELinux and AppArmor can limit the files potentially affected by this bug through policies and profiles that prevent containerd from interacting with specific files.

References

https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w

https://github.com/containerd/containerd/releases/tag/v1.4.8

https://github.com/containerd/containerd/releases/tag/v1.5.4

https://lists.fedoraproject.org/archives/list/[email protected]/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/

Details

Source: MITRE

Published: 2021-07-19

Updated: 2021-10-18

Type: CWE-668

Risk Information

CVSS v2

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 6.3

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Impact Score: 3.4

Exploitability Score: 2.8

Severity: MEDIUM

Tenable Plugins

View all (12 total)

IDNameProductFamilySeverity
154100SUSE SLES12 Security Update : containerd, docker, runc (SUSE-SU-2021:3336-1)NessusSuSE Local Security Checks
medium
152058openSUSE 15 Security Update : containerd (openSUSE-SU-2021:1081-1)NessusSuSE Local Security Checks
critical
152049Oracle Linux 7 : containerd (ELSA-2021-9373)NessusOracle Linux Local Security Checks
medium
151966Photon OS 2.0: Containerd PHSA-2021-2.0-0369NessusPhotonOS Local Security Checks
medium
151960Photon OS 4.0: Containerd PHSA-2021-4.0-0064NessusPhotonOS Local Security Checks
medium
151956Photon OS 3.0: Containerd PHSA-2021-3.0-0269NessusPhotonOS Local Security Checks
medium
151952Photon OS 1.0: Docker PHSA-2021-1.0-0414NessusPhotonOS Local Security Checks
medium
151933Amazon Linux AMI : containerd (ALAS-2021-1523)NessusAmazon Linux Local Security Checks
medium
151885SUSE SLES15 Security Update : containerd (SUSE-SU-2021:2412-1)NessusSuSE Local Security Checks
critical
151874SUSE SLES12 Security Update : containerd (SUSE-SU-2021:2413-1)NessusSuSE Local Security Checks
critical
151860openSUSE 15 Security Update : containerd (openSUSE-SU-2021:2412-1)NessusSuSE Local Security Checks
critical
151830Ubuntu 18.04 LTS / 20.04 LTS / 20.10 / 21.04 : containerd vulnerabilities (USN-5012-1)NessusUbuntu Local Security Checks
medium