CVE vulnerability CVE-2021-41103 and CVE-2021-43816

Our internal security analysis have flagged the below vulnerabilities while scanning traefik reverse proxy.

Component: containerd/containerd, ID: CVE-2021-41103, version: 2.5.4

Component: containerd/containerd, ID: CVE-2021-43816, version: 2.6.0

Can you please help us if the above vulnerability is applicable for the given component while using traefik reverse proxy?

Hello,

Traefik is not affected by this CVE, it's a false-positive that some tools (like Trivy) detect.

Traefik uses containerd as a lib but not the part impacted by the CVE.

2 Likes

Thanks for confirmation.

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.