Affected by GO-2022-0278
and 5 other vulnerabilities
GO-2022-0278 : Unprivileged pod using `hostPath` can side-step active LSM when it is SELinux in github.com/containerd/containerd
GO-2022-0344 : containerd CRI plugin: Insecure handling of image volumes in github.com/containerd/containerd
GO-2022-0360 : Ambiguous OCI manifest parsing in github.com/containerd/containerd
GO-2022-0482 : containerd CRI plugin: Host memory exhaustion through ExecSync in github.com/containerd/containerd
GO-2022-0938 : Insufficiently restricted permissions on plugin directories in github.com/containerd/containerd
GO-2022-1147 : containerd CRI stream server vulnerable to host memory exhaustion via terminal in github.com/containerd/containerd
The highest tagged major version is
v2 .
Discover Packages
github.com/containerd/containerd
pkg
cri
store
label
package
Version:
v1.5.4
Opens a new window with list of versions in this module.
Published: Jul 19, 2021
License: Apache-2.0
Opens a new window with license information.
Imports: 2
Opens a new window with list of imports.
Imported by: 10
Opens a new window with list of known importers.
Documentation
Documentation
¶
Store is used to store SELinux process labels
NewStore creates a new SELinux process label store
Release un-reserves the MLS/MCS level component of the specified label,
allowing it to be used by another process once labels with the same
level have been released.
Reserve reserves the MLS/MCS level component of the specified label
and prevents multiple reserves for the same level
Source Files
¶
Click to show internal directories.
Click to hide internal directories.