Ubuntu Security Notice 5012-1 - It was discovered that containerd incorrectly handled file permission changes. If a user or automated system were tricked into launching a specially crafted container image, a remote attacker could change permissions on files on the host filesystem and possibly escalate privileges.
b22aac378066db3bff966a442b28fd637c43f1b71476469d8cea5cbdd5432b3c