USN-5012-1: containerd vulnerabilities
It was discovered that containerd incorrectly handled file permission
changes. If a user or automated system were tricked into launching a
specially crafted container image, a remote attacker could change
permissions on files on the host filesystem and possibly escalate
privileges.
Source: USN-5012-1: containerd vulnerabilities
