It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-079 advisory.

    A bug was found in containerd where containers launched through containerd's CRI implementation with a     specially-crafted image configuration could gain access to read-only copies of arbitrary files and     directories on the host. This may bypass any policy-based enforcement on container setup (including a     Kubernetes Pod Security Policy) and expose potentially sensitive information. Kubernetes and crictl can     both be configured to use containerd's CRI implementation. (CVE-2022-23648)

    A flaw was found in Moby (Docker Engine), where containers were started incorrectly with non-empty     inheritable Linux process capabilities. This flaw allows an attacker with access to programs with     inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs.
    Containers using Linux users and groups to perform privilege separation inside the container are most     directly impacted. (CVE-2022-24769)

    A bug was found in containerd's CRI implementation where programs inside a container can cause the     containerd daemon to consume memory without bound during invocation of the ExecSync API. This can cause     containerd to consume all available memory on the computer, denying service to other legitimate workloads.
    Kubernetes and crictl can both be configured to use containerd's CRI implementation; ExecSync may be used     when running probes or when executing processes via an exec facility. (CVE-2022-31030)

    A flaw was found in Moby. This flaw allows an attacker to bypass primary group restrictions due to a flaw     in the supplementary group access setup. (CVE-2022-36109)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Amazon Linux 2023 : containerd, containerd-stress (ALAS2023-2023-079)

high Nessus Plugin ID 173188

Version 1.2

Version 1.1

Version 1.0

Version 1.2 Dec 12, 2024, 9:55 AM CVSS metrics ("Cvssv4 score" set to 0.0) CVSSv2 severity (based on None, severity decreased from "High" to "Low") Detection (updated detection logic) Plugin metadata Plugin Feed: 202412120955
Version 1.1 Mar 22, 2023, 4:37 PM Exploit attributes ("Exploit available" set to "True". "Exploit available" set to "True". "Exploit available" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Plugin Feed: 202303221637
Version 1.0 Mar 22, 2023, 12:14 AM New Plugin Feed: 202303220014