You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa containerd

Sigurnosni nedostatak programskog paketa containerd

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2020-12-10 01:13:07.368633

Name : containerd
Product : Fedora 33
Version : 1.4.3
Release : 1.fc33
Summary : Open and reliable container runtime
Description :

Containerd is an industry-standard container runtime with an emphasis on
simplicity, robustness and portability. It is available as a daemon for Linux
and Windows, which can manage the complete container lifecycle of its host
system: image transfer and storage, container execution and supervision,
low-level storage and network attachments, etc.

Update Information:

Security fix for CVE-2020-15257

* Tue Dec 1 2020 Olivier Lemasle <> – 1.4.3-1
– Fix CVE-2020-15257 (#1903050)
– Update to latest upstream – 1.4.3 (#1901908)

[ 1 ] Bug #1899487 – CVE-2020-15257 containerd: unrestricted access to abstract Unix domain socket can lead to privileges escalation

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2020-baeb8dbaea’ at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to
Fedora Code of Conduct:
List Guidelines:
List Archives:

AutorDona Šeruga
Cert idNCERT-REF-2020-12-0001-ADV
More in Preporuke
Sigurnosni nedostatak programskog paketa ceph

Otkriven je sigurnosni nedostatak u programskom paketu ceph za operacijski sustav Fedora. Otkriveni nedostatak potencijalnim napadačima omogućuje zaobilaženje sigurnosnih ograničenja....