Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-41103

containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory contents and execute programs. When containers included executable programs with extended permission bits (such as setuid), unprivileged Linux users could discover and execute those programs. When the UID of an unprivileged Linux user on the host collided with the file owner or group inside a container, the unprivileged Linux user on the host could discover, read, and modify those files. This vulnerability has been fixed in containerd 1.4.11 and containerd 1.5.7. Users should update to these version when they are released and may restart containers or update directory permissions to mitigate the vulnerability. Users unable to update should limit access to the host to trusted users. Update directory permission on container bundles directories.

Published

2021-10-04T17:15:08.517

Last Modified

2024-11-21T06:25:28.423

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Secondary
CWE-22
Type: Primary
CWE-22

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	linuxfoundation	containerd	< 1.4.11	Yes
Application	linuxfoundation	containerd	< 1.5.7	Yes
Operating System	fedoraproject	fedora	34	Yes
Operating System	fedoraproject	fedora	35	Yes
Operating System	debian	debian_linux	11.0	Yes

References

https://cert-portal.siemens.com/productcert/pdf/ssa-222547.pdf ([email protected])
https://github.com/containerd/containerd/commit/5b46e404f6b9f661a205e28d59c982d3634148f8 Patch, Third Party Advisory ([email protected])
https://github.com/containerd/containerd/security/advisories/GHSA-c2h3-6mxw-7mvq Third Party Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B5Q6G6I4W5COQE25QMC7FJY3I3PAYFBB/ ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNFADTCHHYWVM6W4NJ6CB4FNFM2VMBIB/ ([email protected])
https://security.gentoo.org/glsa/202401-31 ([email protected])
https://www.debian.org/security/2021/dsa-5002 Third Party Advisory ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-222547.pdf (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/containerd/containerd/commit/5b46e404f6b9f661a205e28d59c982d3634148f8 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/containerd/containerd/security/advisories/GHSA-c2h3-6mxw-7mvq Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B5Q6G6I4W5COQE25QMC7FJY3I3PAYFBB/ (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZNFADTCHHYWVM6W4NJ6CB4FNFM2VMBIB/ (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/202401-31 (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2021/dsa-5002 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)