USN-4653-2: containerd vulnerability
13 January 2021
containerd could be made to crash or run programs as an administrator.
Releases
Packages
- containerd - daemon to control runC
Details
USN-4653-1 fixed a vulnerability in containerd. Unfortunately, those containerd packages introduced a regression in docker.io and the update was reverted. This update addresses the docker.io issue and reintroduces the fixes from USN-4653-1. We apologize for the inconvenience.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 20.10
Ubuntu 20.04
Ubuntu 18.04
Ubuntu 16.04
After a standard system update you need to restart containerd to make
all the necessary changes.