[Bug 1973054] Re: containerd regression for CVE-2022-23648 in latest version 1.5.9-0ubuntu1~20.04.1

Launchpad Bug Tracker Mon, 16 May 2022 07:01:04 -0700

This bug was fixed in the package containerd - 1.5.9-0ubuntu1~21.10.3

---------------
containerd (1.5.9-0ubuntu1~21.10.3) impish-security; urgency=medium


  * SECURITY UPDATE: Insecure handling of image volumes
    - debian/patches/CVE-2022-23648.patch: Use fs.RootPath when mounting
    volumes. (LP: #1973054)
    - CVE-2022-23648

 -- Paulo Flabiano Smorigo <pfsmor...@canonical.com>  Thu, 12 May 2022
13:41:37 +0000

** Changed in: containerd (Ubuntu Impish)
       Status: Confirmed => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-23648

** Changed in: containerd (Ubuntu Focal)
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1973054

Title:
  containerd regression for CVE-2022-23648 in latest version
  1.5.9-0ubuntu1~20.04.1

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/containerd/+bug/1973054/+subscriptions


-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1973054] Re: containerd regression for CVE-2022-23648 in latest version 1.5.9-0ubuntu1~20.04.1

Reply via email to