UbuntuUpdates.org

Package "containerd"

Name: containerd

Description:

daemon to control runC
Latest version: 1.7.28-0ubuntu1~24.04.2
Release: noble (24.04)
Level: security
Repository: main
Head package: containerd-app
Homepage: https://containerd.io

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "containerd"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "containerd" in Noble

Repository Area Version
base universe 1.6.24~ds1-1ubuntu1
base main 1.7.12-0ubuntu4
security universe 1.6.24~ds1-1ubuntu1.3
updates universe 1.6.24~ds1-1ubuntu1.3
updates main 1.7.28-0ubuntu1~24.04.2

Changelog

Version: 1.7.28-0ubuntu1~24.04.2 2026-01-29 21:28:56 UTC

  containerd-app (1.7.28-0ubuntu1~24.04.2) noble-security; urgency=medium

  * SECURITY UPDATE: local priv escalation vulnerability
    - debian/patches/CVE-2024-25621.patch: Fix directory permissions
    - CVE-2024-25621
  * SECURITY UPDATE: denial of service
    - debian/patches/CVE-2025-64329.patch: fix goroutine leak of container
      attach
    - CVE-2025-64329

 -- Nishit Majithia <email address hidden> Wed, 28 Jan 2026 10:37:51 +0530
Source diff to previous version
CVE-2024-25621 containerd is an open-source container runtime. Versions 0.1.0 through 1.7.28, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4 and 2.2.0-beta.
CVE-2025-64329 containerd is an open-source container runtime. Versions 1.7.28 and below, 2.0.0-beta.0 through 2.0.6, 2.1.0-beta.0 through 2.1.4, and 2.2.0-beta.0 t

Version: 1.7.24-0ubuntu1~24.04.2 2025-03-26 20:07:06 UTC

  containerd-app (1.7.24-0ubuntu1~24.04.2) noble-security; urgency=medium

  * SECURITY UPDATE: Integer overflow.
    - debian/patches/CVE-2024-40635.patch: Add maxUserID and maxGroupID with
      limitations in ./oci/spec_opts.go.
    - CVE-2024-40635

 -- Hlib Korzhynskyy <email address hidden> Mon, 24 Mar 2025 14:34:54 -0230
CVE-2024-40635 containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched w


About   -   Send Feedback to @ubuntu_updates