It was discovered that containerd incorrectly handled certain environment
variables. Contrary to expectations, a container could receive environment
variables defined for a different container, possibly containing sensitive
information.

References

ubuntu.com/security/CVE-2021-21334

ubuntu.com/security/notices/USN-4881-1

fedora 3

veracode 1

ubuntu 1

nessus 12

prion 1

nvd 1

ubuntucve 1

cgr 1

github 1

alpinelinux 1

cve 1

osv 2

cbl_mariner 2

openvas 7

mageia 1

redhatcve 1

ibm 4

debiancve 1

cvelist 1

wolfi 1

amazon 1

gentoo 1

photon 7

suse 2

fedora

[SECURITY] Fedora 34 Update: golang-github-containerd-cri-1.19.0-3.20210307gitaa2d5a9.fc34

2021-03-19 20:29:10

[SECURITY] Fedora 33 Update: containerd-1.4.4-1.fc33

2021-03-15 01:20:25

[SECURITY] Fedora 33 Update: golang-github-containerd-cri-1.19.0-3.20210307gitaa2d5a9.fc33

2021-03-15 01:20:23

veracode

Information Disclosure

2021-03-05 23:36:17

ubuntu

containerd vulnerability

2021-03-17 00:00:00

nessus

Fedora 33 : containerd (2021-470fa24f5b)

2021-03-15 00:00:00

Ubuntu 20.04 LTS : containerd vulnerability (USN-4881-1)

2021-03-23 00:00:00

Fedora 33 : 1:golang-github-containerd-cri (2021-10ce8fcbf1)

2021-03-15 00:00:00

prion

Design/Logic Flaw

2021-03-10 22:15:00

nvd

CVE-2021-21334

2021-03-10 22:15:12

ubuntucve

CVE-2021-21334

2021-03-05 00:00:00

cgr

CVE-2021-21334 vulnerabilities

2024-05-19 03:07:16

github

containerd environment variable leak

2024-01-31 23:22:45

alpinelinux

CVE-2021-21334

2021-03-10 22:15:12

cve

CVE-2021-21334

2021-03-10 22:15:12

osv

containerd environment variable leak

2024-01-31 23:22:45

CVE-2021-21334

2021-03-10 22:15:12

cbl_mariner

CVE-2021-21334 affecting package moby-containerd 1.4.4-2

2021-07-21 23:46:29

CVE-2021-21334 affecting package cri-o for versions less than 1.30.1-1

2024-06-21 09:32:44

openvas

Mageia: Security Advisory (MGASA-2021-0248)

2022-01-28 00:00:00

Fedora: Security Advisory for containerd (FEDORA-2021-470fa24f5b)

2021-03-15 00:00:00

Fedora: Security Advisory for golang-github-containerd-cri (FEDORA-2021-f049305892)

2021-03-20 00:00:00

mageia

Updated docker-containerd packages fix security vulnerability

2021-06-14 00:32:39

redhatcve

CVE-2021-21334

2021-03-11 20:01:14

ibm

Security Bulletin: IBM Cloud Kubernetes Service is affected by a containerd security vulnerability (CVE-2021-21334)

2021-03-22 12:47:36

Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to an issue in OPM and Golang Go packages (CVE-2020-15257, CVE-2021-21334 and CVE-2021-41771)

2022-07-08 07:37:48

Security Bulletin: IBM Edge Application Manager 4.5 addresses multiple security vulnerabilities

2023-05-31 05:42:24

debiancve

CVE-2021-21334

2021-03-10 22:15:12

cvelist

CVE-2021-21334 environment variable leak

2021-03-10 21:30:18

wolfi

CVE-2021-21334 vulnerabilities

2024-07-06 03:08:40

amazon

Medium: containerd

2021-07-19 17:29:00

gentoo

containerd: Multiple vulnerabilities

2021-05-26 00:00:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0333

2021-03-31 00:00:00

Important Photon OS Security Update - PHSA-2021-0333

2021-03-31 00:00:00

Important Photon OS Security Update - PHSA-2021-0210

2021-03-26 00:00:00

suse

Security update for containerd, docker, runc (important)

2021-07-10 00:00:00

Security update for containerd, docker, runc (important)

2021-06-16 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.0%

JSON

Related for OSV:USN-4881-1