Your submission was sent successfully! Close

USN-4653-2: containerd vulnerability

13 January 2021

containerd could be made to crash or run programs as an administrator.

Releases

Packages

Details

USN-4653-1 fixed a vulnerability in containerd. Unfortunately, those containerd packages introduced a regression in docker.io and the update was reverted. This update addresses the docker.io issue and reintroduces the fixes from USN-4653-1. We apologize for the inconvenience.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 20.10
Ubuntu 20.04
Ubuntu 18.04
Ubuntu 16.04

After a standard system update you need to restart containerd to make
all the necessary changes.

Related notices

  • USN-4653-1: containerd, golang-github-containerd-containerd-dev, golang-github-docker-containerd-dev