Access Vulnerability in Google Container Tools

[ankitdn]

While working on the Google Container Tools project, I identified a critical vulnerability in containerd package ( which dependency of Google container tool) that allows unauthorized access to the host filesystem during the container image pull process. This vulnerability occurs due to improper handling of filesystem paths and could enable attackers to exploit container images
For more Details check following links
CVE Link
CVE Report

[tlk]

This looks like a false positive caused by an incorrect record in the golang vulndb.

See golang/vulndb#3708, golang/vulndb#3709, golang/vulndb#3712, and golang/vulndb#3713