Containerd
CVE-2024-40635: Integer Overflow in Containerd User ID Handling Leads to Privilege Escalation
Executive Summary CVE-2024-40635 is a vulnerability affecting containerd, a widely used open-source container runtime. This vulnerability stems from an integer overflow in the handling of User IDs (UIDs) and Group IDs (GIDs) when launching containers. Specifically, if a container is launched with a user specified as UID:GID where either