Amazon Linux 1 Security Advisory: ALAS-2023-1888
Advisory Release Date: 2023-11-10 17:32 Pacific
Advisory Updated Date: 2023-11-15 23:27 Pacific
FAQs regarding Amazon Linux ALAS/CVE Severity
Containerd is not affected by CVE-2023-39325. While it contains the affected module, it does not use it in a way that exposes users to CVE-2023-39325.
Affected Packages:
containerd
Issue Correction:
Run yum update containerd to update your system.
src:
containerd-1.4.13-6.amzn1.src
x86_64:
containerd-1.4.13-6.amzn1.x86_64
containerd-stress-1.4.13-6.amzn1.x86_64
containerd-debuginfo-1.4.13-6.amzn1.x86_64