high
7.8
CWE
22
Advisory Published
Advisory Published
Updated

CVE-2021-41103: Insufficiently restricted permissions on plugin directories

First published: Mon Oct 04 2021(Updated: )

### Impact A bug was found in containerd where container root directories and some plugins had insufficiently restricted permissions, allowing otherwise unprivileged Linux users to traverse directory contents and execute programs. When containers included executable programs with extended permission bits (such as setuid), unprivileged Linux users could discover and execute those programs. When the UID of an unprivileged Linux user on the host collided with the file owner or group inside a container, the unprivileged Linux user on the host could discover, read, and modify those files. ### Patches This vulnerability has been fixed in containerd 1.4.11 and containerd 1.5.7. Users should update to these version when they are released and may restart containers or update directory permissions to mitigate the vulnerability. ### Workarounds Limit access to the host to trusted users. Update directory permission on container bundles directories. ### For more information If you have any questions or comments about this advisory: * Open an issue in [github.com/containerd/containerd](https://github.com/containerd/containerd/issues/new/choose) * Email us at [security@containerd.io](mailto:security@containerd.io)

Credit: security-advisories@github.com security-advisories@github.com

Affected SoftwareAffected VersionHow to fix
debian/containerd
1.4.13~ds1-1~deb11u4
1.4.13~ds1-1~deb11u2
1.6.20~ds1-1
1.6.20~ds1-2
Linuxfoundation Containerd<1.4.11
Linuxfoundation Containerd>=1.5.0<1.5.7
Fedoraproject Fedora=34
Fedoraproject Fedora=35
Debian Debian Linux=11.0
redhat/containerd<1.4.11
1.4.11
redhat/containerd<1.5.7
1.5.7
go/github.com/containerd/containerd>=1.5.0<1.5.7
1.5.7
go/github.com/containerd/containerd<1.4.11
1.4.11
<1.4.11
>=1.5.0<1.5.7
=34
=35
=11.0

Remedy

https://github.com/containerd/containerd/commit/5b46e404f6b9f661a205e28d59c982d3634148f8

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

Frequently Asked Questions

  • What is CVE-2021-41103?

    CVE-2021-41103 is a vulnerability found in the containerd package that allows a local authenticated attacker to escalate privileges.

  • What is containerd?

    containerd is an open source container runtime known for its simplicity, robustness, and portability.

  • How does CVE-2021-41103 affect containerd?

    CVE-2021-41103 affects containerd by allowing unprivileged Linux users to traverse directory contents and potentially escalate their privileges.

  • What is the severity of CVE-2021-41103?

    The severity of CVE-2021-41103 is high with a CVSS score of 7.8.

  • How can I fix CVE-2021-41103 in containerd?

    To fix CVE-2021-41103 in containerd, update to version 1.4.11 or 1.5.7, depending on the specific version you are using.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203