Github.com/containerd/containerd

This hub aggregates every CVE we track for Github.com/containerd/containerd, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 14 most recently published vulnerabilities affecting Github.com/containerd/containerd.

• CVE-2025-64329containerd CRI server: Host memory exhaustion through Attach goroutine leak5.5Nov 7, 2025
• CVE-2024-25621containerd affected by a local privilege escalation via wide permissions on CRI directory7.3Nov 6, 2025
• CVE-2024-40635containerd has an integer overflow in User ID handling4.6Mar 17, 2025
• CVE-2023-25173containerd supplementary groups are not set up properly5.3Feb 16, 2023
• CVE-2023-25153containerd OCI image importer memory exhaustion6.2Feb 16, 2023
• CVE-2022-23471containerd CRI stream server: Host memory exhaustion through terminal resize goroutine leak5.7Dec 7, 2022
• CVE-2022-31030containerd CRI plugin: Host memory exhaustion through ExecSync5.5Jun 6, 2022
• CVE-2022-23648Insecure handling of image volumes in containerd CRI plugin7.5Mar 3, 2022
• CVE-2021-43816Improper Preservation of Permissions in containerd8.0Jan 5, 2022
• CVE-2021-41103Insufficiently restricted permissions on plugin directories7.8Oct 4, 2021
• CVE-2021-32760Archive package allows chmod of file outside of unpack target directory5.0Jul 19, 2021
• CVE-2021-21334environment variable leak6.3Mar 10, 2021
• CVE-2020-15257containerd-shim API Exposed to Host Network Containers5.2Dec 1, 2020
• CVE-2020-15157containerd can be coerced into leaking credentials during image pull6.1Oct 16, 2020