MGASA-2026-0030

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2026-0030.html

Import Source

https://advisories.mageia.org/MGASA-2026-0030.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2026-0030

Related

Published

2026-02-02T19:16:20Z

Modified

2026-02-04T04:34:31.610470Z

Summary

Updated docker-containerd packages fix security vulnerabilities

Details

It was discovered that containerd incorrectly set certain directory path permissions. An attacker could possibly use this issue to achieve unauthorised access to the files. (CVE-2024-25621) It was discovered that containerd did not properly handle the execution of the goroutine of container attach. An attacker could possibly use this issue to cause a denial of service. (CVE-2025-64329)

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:9 / docker-containerd

Package

Name: docker-containerd
Purl: pkg:rpm/mageia/docker-containerd?arch=source&distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.7.29-1.mga9

Ecosystem specific

{
    "section": "core"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2026-0030.json"