These are all security issues fixed in the containerd-1.4.8-2.2 package on the GA media of openSUSE Tumbleweed.
{ "binaries": [ { "containerd": "1.4.8-2.2", "containerd-ctr": "1.4.8-2.2" } ] }