CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 1CVE-2021-25907
https://notcve.org/view.php?id=CVE-2021-25907
22 Jan 2021 — An issue was discovered in the containers crate before 0.9.11 for Rust. When a panic occurs, a util::{mutate,mutate2} double drop can be performed. Se detectó un problema en la crate containers versiones anteriores a 0.9.11 para Rust. Cuando ocurre un pánico, una doble caída util::{mutate, mutate2} puede ser llevada a cabo • https://rustsec.org/advisories/RUSTSEC-2021-0010.html • CWE-415: Double Free •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1702 – containers/image: Container images read entire image manifest into memory
https://notcve.org/view.php?id=CVE-2020-1702
01 Apr 2020 — A malicious container image can consume an unbounded amount of memory when being pulled to a container runtime host, such as Red Hat Enterprise Linux using podman, or OpenShift Container Platform. An attacker can use this flaw to trick a user, with privileges to pull container images, into crashing the process responsible for pulling the image. This flaw affects containers-image versions before 5.2.0. Una imagen de contenedor maliciosa puede consumir una cantidad ilimitada de memoria cuando es extraído a un... • https://bugzilla.redhat.com/show_bug.cgi?id=1792796 • CWE-400: Uncontrolled Resource Consumption •