CVE-2021-23218

Summary

When running with FIPS mode enabled, Mirantis Container Runtime 20.10.8 leaks memory during TLS Handshakes which could be abused to cause a denial of service.

Affected Software

VendorProductVersion RangeStatus
MirantisMirantis Container Runtime20.10.8affected

Weaknesses

  • CWE-401: CWE-401 Improper Release of Memory Before Removing Last Reference

Workarounds

Disable FIPS mode

ADP Enrichment

CVE Program Container

Additional References

References