Read Time:23 Second
David Korczynski and Adam Korczynski discovered that containerd
incorrectly processed certain images with large files. An attacker
could possibly use this issue to cause containerd to crash,
resulting in a denial of service. (CVE-2023-25153)
It was discovered that containerd incorrectly set up supplementary
groups inside a container. An attacker with direct access to the
container could possibly use this issue to obtain sensitive information
or execute code with higher privileges. (CVE-2023-25173)