containerd-1

Direct Vulnerabilities

Known vulnerabilities in the containerd-1 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
L Missing Authorization	<1.7.32-r2
L CVE-2026-46598	<1.7.32-r2
L Improper Enforcement of Message Integrity During Transmission in a Communication Channel	<1.7.32-r2
L CVE-2026-39831	<1.7.32-r2
L CVE-2026-46595	<1.7.32-r2
L CVE-2026-39828	<1.7.32-r2
L CVE-2026-39829	<1.7.32-r2
L Improper Certificate Validation	<1.7.32-r2
L CVE-2026-39830	<1.7.32-r2
L Incorrect Type Conversion or Cast	<1.7.32-r2
L Deserialization of Untrusted Data	<1.7.32-r2
L Integer Overflow or Wraparound	<1.7.32-r2
H Loop with Unreachable Exit Condition ('Infinite Loop')	<1.7.31-r3
H NULL Pointer Dereference	<1.7.31-r2
L Cross-site Scripting (XSS)	<1.7.31-r2
L GHSA-p9h5-jm8x-mjm5	<1.7.31-r2
M Out-of-bounds Write	<1.7.31-r2
H Allocation of Resources Without Limits or Throttling	<1.7.31-r2
L GHSA-3v2c-x6q9-f697	<1.7.31-r2
H Double Free	<1.7.31-r2
L CVE-2026-42501	<1.7.31-r2
L CVE-2026-39825	<1.7.31-r2
L GHSA-497x-jcxf-m478	<1.7.31-r2
L GHSA-h74g-238j-357m	<1.7.31-r2
L GHSA-5m4p-2gjx-p2g8	<1.7.31-r2
L GHSA-qf3q-3h68-mmh2	<1.7.31-r2
L Improper Encoding or Escaping of Output	<1.7.31-r2
M Link Following	<1.7.31-r2
L GHSA-2283-wf8c-rw8r	<1.7.31-r2
L GHSA-qc64-m6c2-v4x7	<1.7.31-r2
L GHSA-xq5j-9r39-c3vf	<1.7.31-r2
L CVE-2026-42499	<1.7.31-r2
L GHSA-8g2r-hhvj-mv99	<1.7.31-r2
L GHSA-6jwv-w5xf-7j27	<1.7.31-r0
L CVE-2026-33817	<1.7.31-r0
L GHSA-w8rr-5gcm-pp58	<1.7.30-r9
L Uncontrolled Memory Allocation	<1.7.30-r9
H Untrusted Search Path	<1.7.30-r8
L GHSA-hfvc-g4fc-pqhx	<1.7.30-r8
L Uncaught Exception	<1.7.30-r7
L GHSA-78h2-9frx-2jm8	<1.7.30-r7
L Improper Authorization	<1.7.30-r5
L GHSA-p77j-4mvh-x3m3	<1.7.30-r5
L GHSA-rv83-g57w-fr8j	<1.7.30-r4
L GHSA-j3gx-2473-5fp8	<1.7.30-r4
L Direct Request ('Forced Browsing')	<1.7.30-r4
L GHSA-j4j7-vw47-rhfq	<1.7.30-r4
L Cross-site Scripting (XSS)	<1.7.30-r4
L Directory Traversal	<1.7.30-r4
L GHSA-9h8m-3fm2-qjrq	<1.7.30-r3
L Untrusted Search Path	<1.7.30-r3
L GHSA-h355-32pf-p2xm	<1.7.30-r2
L CVE-2025-61732	<1.7.30-r2
L GHSA-8jvr-vh7g-f8gx	<1.7.30-r2
C CVE-2025-68121	<1.7.30-r2
L GHSA-m6hq-p25p-ffr2	<1.7.29-r1
M Memory Leak	<1.7.29-r1
L GHSA-hcg3-q754-cr77	<1.7.27-r0
L GHSA-6v2p-p543-phr9	<1.7.26-r3
H Incorrect Execution-Assigned Permissions	<1.7.29-r1
L GHSA-pwhc-rpq9-4c8w	<1.7.29-r1
L GHSA-j5w8-q4qc-rx2x	<1.7.29-r2
L GHSA-f6x5-jh6r-wrfv	<1.7.29-r2
L CVE-2025-47914	<1.7.29-r2
L CVE-2025-58181	<1.7.29-r2
H Symlink Following	<1.7.29-r1
L CVE-2025-47910	<1.7.28-r3
L Race Condition	<1.7.28-r1
L CVE-2025-4673	<1.7.27-r3
L CVE-2025-22874	<1.7.27-r3
L CVE-2025-22872	<1.7.27-r2
L CVE-2025-22871	<1.7.27-r1
L CVE-2025-22869	<1.7.27-r0
L CVE-2025-22870	<1.7.26-r4
L CVE-2025-22868	<1.7.26-r3
L Allocation of Resources Without Limits or Throttling	<1.7.26-r1
L CVE-2025-22866	<1.7.25-r2
L CVE-2024-45336	<1.7.25-r1
L CVE-2024-45341	<1.7.25-r1
L CVE-2024-45338	<1.7.24-r4
L CVE-2024-45337	<1.7.24-r3

Vulnerability

Vulnerable Version

Missing Authorization

<1.7.32-r2