| STIG ID | Version | Title | Product |
|---|---|---|---|
| CNTR-OS-000560 | V2R4 | OpenShift must prevent unauthorized and unintended information transfer via shared system resources and enable page poisoning. | |
| CNTR-OS-000570 | V2R4 | OpenShift must disable virtual syscalls. | |
| CNTR-OS-000580 | V2R4 | OpenShift must enable poisoning of SLUB/SLAB objects. | |
| CNTR-OS-000590 | V2R4 | OpenShift must set the sticky bit for world-writable directories. | |
| CNTR-OS-000600 | V2R4 | OpenShift must restrict access to the kernel buffer. | |
| CNTR-OS-000610 | V2R4 | OpenShift must prevent kernel profiling. | |
| CNTR-R2-000970 | V2R4 | Rancher RKE2 runtime must maintain separate execution domains for each container by assigning each container a separate address space to prevent unauthorized and unintended information transfer via shared system resources. |