B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News

CVE-2026-53489 - containerd: Arbitrary host CRI log file read via symlink following in CRI checkpoint restore

CVE ID :CVE-2026-53489 Published : July 1, 2026, 6:10 p.m. | 5 hours, 2 minutes ago Description :containerd is an open-source container runtime. Versions prior to 2.3.2, 2.2.5 and 2.1.9 contain a bug where the CRI plugin restores container.log from a checkpoint image without validating a...

Original-Artikel öffnen Zurück zur Übersicht