CVE-2026-5747 - Out-of-bounds Write in Firecracker virtio-pci Transport

AWS Firecracker ยท 2026-06-05

Actions

Rate this issue

Technical Details

Affected Versions 1.13.0, 1.14.3, 1.15.0
Regions all
CVE IDs CVE-2026-5747
Migration Required Yes
Cost Impact Neutral
IaC Impact High

What This Means

For DevOps Teams

Update Firecracker to version 1.14.4 or 1.15.1 to address the out-of-bounds write vulnerability (CVE-2026-5747) and ensure your deployments are secure.

For Platform Teams

Deploy the patched Firecracker versions to maintain the security and stability of your container and function-based services.

For Executives

Implement the latest Firecracker version to mitigate the out-of-bounds write vulnerability (CVE-2026-5747) and ensure the security of your AWS infrastructure.

Source

View original AWS announcement โ†’

Related AWS Firecracker Updates

Weekly AWS Digest in Your Inbox

No spam, no headlines. Just a weekly summary of the 3โ€“7 AWS changes that matter for DevOps and Platform teams.

๐Ÿ“ง Exactly 1 email per week โ€ข Every Tuesday โ€ข Unsubscribe anytime

Today: AWS only. Coming next: Azure and other major clouds.