More information about this security flaw is available in the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=2313842 Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
cri-o1.29 is at CRI-O v1.29.12 in rawhide and F41. cri-o1.30 is at CRI-O v1.30.9 in rawhide and F41. cri-o1.31 is at CRI-O v1.31.4 in rawhide and F41. The cri-o package (unversioned) is at v1.30.6 in F41 (vulnerable). A pull request to up date to v1.30.9 (fixed) is available, An upgrade request is needed to update cri-o package in F40 from unsupported v1.28.2 to v1.29.12 (or later).