Advisories » MGASA-2026-0030

Updated docker-containerd packages fix security vulnerabilities

Publication date: 02 Feb 2026
Modification date: 02 Feb 2026
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-25621 , CVE-2025-64329

Description

It was discovered that containerd incorrectly set certain
directory path permissions. An attacker could possibly use this issue to
achieve unauthorised access to the files. (CVE-2024-25621)
It was discovered that containerd did not properly handle the execution
of the goroutine of container attach. An attacker could possibly use
this
issue to cause a denial of service. (CVE-2025-64329)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=35081
• https://ubuntu.com/security/notices/USN-7983-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25621
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64329

SRPMS

9/core

• docker-containerd-1.7.29-1.mga9