Resource exhaustion in Containerd

CVE-2026-47262

containerd is an open-source container runtime. Versions prior to 1.7.33, 2.0.10, 2.1.9, 2.2.5 and 2.3.2, contain a vulnerability that allows a maliciously crafted image to cause a Denial of Service (DoS) condition. When creating a contain…

Vulnerability class: DoS (Denial of Service)

Affected products

  • Containerd — versions >= 1.7.0, < 1.7.33, >= 2.0.0, < 2.0.10, >= 2.1.0, < 2.1.9

Weakness classification (CWE)

References