Affected by GO-2022-0344
and 6 other vulnerabilities
GO-2022-0344: containerd CRI plugin: Insecure handling of image volumes in github.com/containerd/containerd
GO-2022-0360: Ambiguous OCI manifest parsing in github.com/containerd/containerd
GO-2022-0482: containerd CRI plugin: Host memory exhaustion through ExecSync in github.com/containerd/containerd
GO-2022-0784: containerd-shim API Exposed to Host Network Containers in github.com/containerd/containerd
GO-2022-0921: Archive package allows chmod of file outside of unpack target directory in github.com/containerd/containerd
GO-2022-0938: Insufficiently restricted permissions on plugin directories in github.com/containerd/containerd
GO-2022-1147: containerd CRI stream server vulnerable to host memory exhaustion via terminal in github.com/containerd/containerd
The highest tagged major version is
v2.
This package is not in the latest version of its module.
README
¶
This directory provides skeleton code as the starting point for creating a Runtime v2 shim. This allows runtime authors to quickly bootstrap new shim implementations.
For full documentation on building a shim for containerd, see the Shim Documentation file.
Documentation
Source Files
Directories