VulnerableCode Package Details - pkg:deb/debian/containerd@1.4.5~ds1-2%2Bdeb11u1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-kuwr-ugf2-rke4	Insufficiently restricted permissions on plugin directories ### Impact A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory contents and execute programs. When containers included executable programs with extended permission bits (such as setuid), unprivileged Linux users could discover and execute those programs. When the UID of an unprivileged Linux user on the host collided with the file owner or group inside a container, the unprivileged Linux user on the host could discover, read, and modify those files. ### Patches This vulnerability has been fixed in containerd 1.4.11 and containerd 1.5.7. Users should update to these version when they are released and may restart containers or update directory permissions to mitigate the vulnerability. ### Workarounds Limit access to the host to trusted users. Update directory permission on container bundles directories. ### For more information If you have any questions or comments about this advisory: * Open an issue in [github.com/containerd/containerd](https://github.com/containerd/containerd/issues/new/choose) * Email us at [security@containerd.io](mailto:security@containerd.io)	CVE-2021-41103 GHSA-c2h3-6mxw-7mvq

Vulnerability

Summary

Aliases

VCID-kuwr-ugf2-rke4

Insufficiently restricted permissions on plugin directories ### Impact A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory contents and execute programs. When containers included executable programs with extended permission bits (such as setuid), unprivileged Linux users could discover and execute those programs. When the UID of an unprivileged Linux user on the host collided with the file owner or group inside a container, the unprivileged Linux user on the host could discover, read, and modify those files. ### Patches This vulnerability has been fixed in containerd 1.4.11 and containerd 1.5.7. Users should update to these version when they are released and may restart containers or update directory permissions to mitigate the vulnerability. ### Workarounds Limit access to the host to trusted users. Update directory permission on container bundles directories. ### For more information If you have any questions or comments about this advisory: * Open an issue in [github.com/containerd/containerd](https://github.com/containerd/containerd/issues/new/choose) * Email us at [security@containerd.io](mailto:security@containerd.io)

CVE-2021-41103
GHSA-c2h3-6mxw-7mvq

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:51:44.572526+00:00	Debian Importer	Fixing	VCID-kuwr-ugf2-rke4	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:05:53.228328+00:00	Debian Importer	Fixing	VCID-kuwr-ugf2-rke4	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-02T17:12:55.041725+00:00	Debian Importer	Fixing	VCID-kuwr-ugf2-rke4	https://security-tracker.debian.org/tracker/data/json	38.1.0