Versions
0
2.0.8-20210518.144540.git5288ed93,2.0.18-10,2.1.2
317841cf45d60159c14df77c2167a6ddcf673061 upgrade from upstream
7cb6c860e9b56def7667096351cabf793dc5645a upgrade from upstream
0106-fix-loading-of-nsswitch-based-config-inside-chroot-u.patch
0102-fix-loading-of-nsswitch-based-config-inside-chr.patch
2.1.4-1
2.0.18-13
2.1.4-2
Recent CVEs
CVE-2021-33632
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in openEuler iSulad on Linux allows Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions. This vulnerability is associated with program files https://gitee.Com/openeuler/iSulad/blob/master/src/cmd/isulad/main.C. This issue affects iSulad: 2.0.18-13, from 2.1.4-1 through 2.1.4-2.
CVE-2021-33638
When the isula cp command is used to copy files from a container to a host machine and the container is controlled by an attacker, the attacker can escape the container.
CVE-2021-33637
When the isula export command is used to export a container to an image and the container is controlled by an attacker, the attacker can escape the container.
CVE-2021-33636
When the isula load command is used to load malicious images, attackers can execute arbitrary code.
CVE-2021-33635
When malicious images are pulled by isula pull, attackers can execute arbitrary code.