Lucene search
+L

269 matches found

Tenable Nessus
Tenable Nessus
added 2024/02/01 12:0 a.m.34 views

Amazon Linux AMI : runc (ALAS-2024-1911)

The version of runc installed on the remote host is prior to 1.1.11-1.1. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1911 advisory. AWS is aware of CVE-2024-21626, an issue affecting the runc component of several open source container management systems. Under...

8.6CVSS7AI score0.18087EPSS
Exploits18References4
Tenable Nessus
Tenable Nessus
added 2024/02/01 12:0 a.m.34 views

Amazon Linux 2 : runc (ALASNITRO-ENCLAVES-2024-036)

The version of runc installed on the remote host is prior to 1.1.11-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2NITRO-ENCLAVES-2024-036 advisory. AWS is aware of CVE-2024-21626, an issue affecting the runc component of several open source container management system...

8.6CVSS7AI score0.18087EPSS
Exploits18References4
OSV
OSV
added 2024/01/31 10:15 p.m.9 views

AZL-34075 CVE-2024-21626 affecting package kubevirt for versions less than 0.59.0-14

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process from runc exec to have a working directory in the host filesystem...

8.6CVSS6.7AI score0.18087EPSS
Exploits18References1
OSV
OSV
added 2024/01/31 10:15 p.m.5 views

AZL-43789 CVE-2024-21626 affecting package buildah 1.18.0-29

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process from runc exec to have a working directory in the host filesystem...

8.6CVSS6.7AI score0.18087EPSS
Exploits18References1
OSV
OSV
added 2024/01/31 10:15 p.m.4 views

AZL-34896 CVE-2024-21626 affecting package kubernetes for versions less than 1.30.1-1

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process from runc exec to have a working directory in the host filesystem...

8.6CVSS6.7AI score0.18087EPSS
Exploits18References1
OSV
OSV
added 2024/01/31 10:15 p.m.7 views

AZL-35006 CVE-2024-21626 affecting package moby-engine for versions less than 25.0.3-1

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process from runc exec to have a working directory in the host filesystem...

8.6CVSS6.7AI score0.18087EPSS
Exploits18References1
OSV
OSV
added 2024/01/31 10:15 p.m.1 views

DEBIAN-CVE-2024-21626

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process from runc exec to have a working directory in the host filesystem...

8.6CVSS6.7AI score0.18087EPSS
Exploits18References1
Debian CVE
Debian CVE
added 2024/01/31 9:31 p.m.89 views

CVE-2024-21626

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process from runc exec to have a working directory in the host filesystem...

8.6CVSS7.5AI score0.18087EPSS
Exploits18
OSV
OSV
added 2024/01/31 8:17 p.m.5 views

USN-6619-1 runc vulnerability

Rory McNamara discovered that runC did not properly manage internal file descriptor while managing containers. An attacker could possibly use this issue to obtain sensitive information or bypass container restrictions...

8.6CVSS6.7AI score0.18087EPSS
Exploits18References2
Amazon
Amazon
added 2024/01/31 12:0 a.m.5 views

Important: runc

Issue Overview: AWS is aware of CVE-2024-21626, an issue affecting the runc component of several open source container management systems. Under certain conditions, an actor could leverage a specially crafted container or container configuration to access files or directories outside the...

8.6CVSS6.9AI score0.18087EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2024/01/31 12:0 a.m.60 views

Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.10 : runC vulnerability (USN-6619-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6619-1 advisory. Rory McNamara discovered that runC did not properly manage internal file descriptor while managing containers. An attacker could...

8.6CVSS7AI score0.18087EPSS
Exploits18References2
RedHat Linux
RedHat Linux
added 2023/11/14 4:3 p.m.8 views

runc: AppArmor can be bypassed when `/proc` inside the container is symlinked with a specific mount configuration

A flaw was found in runc. This vulnerability could allow a remote attacker to bypass security restrictions and create a symbolic link inside a container to the /proc directory, bypassing AppArmor and SELinux protections...

7.8CVSS6.9AI score0.00343EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/14 4:3 p.m.3 views

runc: Rootless runc makes `/sys/fs/cgroup` writable

A flaw was found in runc, where it is vulnerable to a denial of service caused by improper access control in the /sys/fs/cgroup endpoint. This flaw allows a local authenticated attacker to cause a denial of service...

6.3CVSS6.8AI score0.00327EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2023/11/07 12:0 a.m.4 views

PT-2024-1467

Name of the Vulnerable Software and Affected Versions runc versions 1.1.11 and earlier Description The issue is related to an internal file descriptor leak in runc, which allows an attacker to cause a newly-spawned container process to have a working directory in the host filesystem namespace. Th...

8.6CVSS7.7AI score0.18087EPSS
Exploits18References259
Amazon
Amazon
added 2023/08/25 12:0 a.m.7 views

Important: runc

Issue Overview: The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value...

6.5CVSS7AI score0.01453EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/07/20 12:0 a.m.7 views

The vulnerability of the Runc command-line tool for running isolated containers, related to improper storage of permissions, allows a malicious actor to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Runc container launch tool is related to improper storage of permissions. Exploiting this vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures...

6.3CVSS6.8AI score0.00327EPSS
Exploits1References12Affected Software4
BDU FSTEC
BDU FSTEC
added 2023/07/20 12:0 a.m.7 views

The vulnerability in the `libcontainer/rootfs_linux.go` component of the Runc tool for running isolated containers allows a attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the libcontainer/rootfslinux.go component, a tool for running isolated containers in Runc, is related to the use of a name with an incorrect reference. Exploiting this vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service...

7CVSS6.4AI score0.00444EPSS
Exploits1References12Affected Software5
BDU FSTEC
BDU FSTEC
added 2023/05/17 12:0 a.m.6 views

The vulnerability of the Runc command-line tool for running isolated containers, related to integer overflows, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Runc container launch tool is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker operating remotely to access confidential data, compromise its integrity, and cause service failures...

6CVSS6.6AI score0.01677EPSS
Exploits1References14Affected Software4
OSV
OSV
added 2023/04/06 9:20 p.m.6 views

MGASA-2023-0125 Updated opencontainers-runc packages fix security vulnerability

/sys/fs/cgroup is writable when cgroupns isn't unshared CVE-2023-25809 Regression that reintroduced CVE-2019-19921 - Incorrect Access Control leading to Escalation of Privileges CVE-2023-27561 AppArmor/SELinux bypass with symlinked /proc CVE-2023-28642...

7.8CVSS6.7AI score0.00444EPSS
Exploits2References4
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.4 views

runc 后置链接漏洞

runc is a CLI Command Line Interface tool for generating and running containers according to the OCI specification. A security vulnerability exists in runc versions prior to 1.1.5, which stems from the fact that AppArmor can be bypassed when /proc within a container is symlinked with a specific...

7.8CVSS7.4AI score0.00343EPSS
Exploits0References8
Rows per page
Query Builder