github.com/containerd/containerd is vulnerable to denial of service. The vulnerability exists in the ExecSync
function in container_execsync.go
due to a lack of validation in memory consumption which allows an attacker to crash the application via memory exhaustion.
www.openwall.com/lists/oss-security/2022/06/07/1
github.com/advisories/GHSA-5ffw-gxpp-mxpf
github.com/containerd/containerd/commit/10c12954828e7c7c9b6e0ea9b0c02b01407d3ae1
github.com/containerd/containerd/commit/a17ec496a95e55601607ca50828147e8ccaeebf1
github.com/containerd/containerd/commit/c1bcabb4541930f643aa36a2b38655e131346382
github.com/containerd/containerd/security/advisories/GHSA-5ffw-gxpp-mxpf
lists.fedoraproject.org/archives/list/[email protected]/message/REOZCUAPCA7NFDWYBDYX6EYXWLHABKBO/
lists.fedoraproject.org/archives/list/[email protected]/message/WSIGDBHAB3I75JBJNGWEPBTJPS2FOVHD/
www.debian.org/security/2022/dsa-5162