CVE-2025-64329: containerd CRI server: Host memory exhaustion through Attach goroutine leak

Overview

Severity

N/A

Exploit Status

Not Exploited

Patch Tuesday

2025-Nov

Released

2025-11-08

Last Updated

2025-12-07

EPSS Score

0.01% (percentile: 0.3%)

Affected Products (5)

Open Source Software

• azl3 containerd2 2.0.0-14 on Azure Linux 3.0
• cbl2 moby-containerd 1.6.26-12 on CBL Mariner 2.0
• cbl2 moby-containerd-cc 1.7.7-12 on CBL Mariner 2.0

Other

• 20745-17084

Mariner

• azl3 moby-containerd-cc 1.7.7-9 on Azure Linux 3.0

Revision History

• 2025-11-08: Information published.
• 2025-12-07: Information published.