CVE-2023-25153

containerd is an open source container runtime. Before versions 1.6.18 and 1.5.18, when importing an OCI image, there was no limit on the number of bytes read for certain files. A maliciously crafted image with a large file where a limit was not applied could cause a denial of service. This bug has been fixed in containerd 1.6.18 and 1.5.18. Users should update to these versions to resolve the issue. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images.

CVSS v3.0 5.5 MEDIUM

5.5^/10

CVSS v3.0 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/containerd/containerd/releases/tag/v1.5.18	Release Notes
https://github.com/containerd/containerd/releases/tag/v1.6.18	Release Notes
https://github.com/containerd/containerd/commit/0c314901076a74a7b797a545d2f462285fdbb8c4	Patch
https://github.com/containerd/containerd/security/advisories/GHSA-259w-8hf6-59c2	Vendor Advisory

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:linuxfoundation:containerd::::::::
	cpe:2.3:a:linuxfoundation:containerd::::::::

Information

Published : 2023-02-16 07:15

Updated : 2023-02-24 08:41

NVD link : CVE-2023-25153

Mitre link : CVE-2023-25153

JSON object : View

CWE

CWE-770

Allocation of Resources Without Limits or Throttling

Advertisement

Products Affected

linuxfoundation

containerd

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://github.com/containerd/containerd/releases/tag/v1.5.18", "name": "https://github.com/containerd/containerd/releases/tag/v1.5.18", "tags": ["Release Notes"], "refsource": "MISC"}, {"url": "https://github.com/containerd/containerd/releases/tag/v1.6.18", "name": "https://github.com/containerd/containerd/releases/tag/v1.6.18", "tags": ["Release Notes"], "refsource": "MISC"}, {"url": "https://github.com/containerd/containerd/commit/0c314901076a74a7b797a545d2f462285fdbb8c4", "name": "https://github.com/containerd/containerd/commit/0c314901076a74a7b797a545d2f462285fdbb8c4", "tags": ["Patch"], "refsource": "MISC"}, {"url": "https://github.com/containerd/containerd/security/advisories/GHSA-259w-8hf6-59c2", "name": "https://github.com/containerd/containerd/security/advisories/GHSA-259w-8hf6-59c2", "tags": ["Vendor Advisory"], "refsource": "MISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "containerd is an open source container runtime. Before versions 1.6.18 and 1.5.18, when importing an OCI image, there was no limit on the number of bytes read for certain files. A maliciously crafted image with a large file where a limit was not applied could cause a denial of service. This bug has been fixed in containerd 1.6.18 and 1.5.18. Users should update to these versions to resolve the issue. As a workaround, ensure that only trusted images are used and that only trusted users have permissions to import images."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-770"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2023-25153", "ASSIGNER": "security-advisories@github.com"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}}, "publishedDate": "2023-02-16T15:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:linuxfoundation:containerd:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "1.5.18"}, {"cpe23Uri": "cpe:2.3:a:linuxfoundation:containerd:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "1.6.18", "versionStartIncluding": "1.6.0"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2023-02-24T16:41Z"}