Lucene search
K

46 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-7244

Malicious code in bioql PyPI...

5.9CVSS6.7AI score0.00167EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/05/25 12:0 a.m.8 views

Photon OS 3.0: Runc PHSA-2022-3.0-0405

An update of the runc package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-3.0-0405. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.8CVSS8.1AI score0.00386EPSS
Exploits0References2
NVD
NVD
added 2025/03/21 3:15 p.m.36 views

CVE-2025-27612

libcontainer is a library for container control. Prior to libcontainer 0.5.3, while creating a tenant container, the tenant builder accepts a list of capabilities to be added in the spec of tenant container. The logic here adds the given capabilities to all capabilities of main container if prese...

5.9CVSS0.00167EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/03/21 2:24 p.m.61 views

CVE-2025-27612 Libcontainer is affected by capabilities elevation

libcontainer is a library for container control. Prior to libcontainer 0.5.3, while creating a tenant container, the tenant builder accepts a list of capabilities to be added in the spec of tenant container. The logic here adds the given capabilities to all capabilities of main container if prese...

5.9CVSS0.00167EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.26 views

RHEL 8 : runc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - runc: integer overflow in netlink bytemsg length field allows attacker to override netlink-based containe...

7.8CVSS7.9AI score0.01663EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.23 views

RHEL 7 : runc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - runc: Execution of malicious containers allows for container escape and access to host filesystem...

8.6AI score0.9857EPSS
Exploits34References3
Tenable Nessus
Tenable Nessus
added 2024/02/20 12:0 a.m.41 views

Amazon Linux 2023 : runc (ALAS2023-2024-531)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-531 advisory. runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. A bug was found in runc prior to version 1.1.2 where runc exec --cap created processes with non-empty...

7.8CVSS7.2AI score0.00386EPSS
Exploits0References4
Amazon
Amazon
added 2024/02/19 12:0 a.m.7 views

Low: runc

Issue Overview: runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. A bug was found in runc prior to version 1.1.2 where runc exec --cap created processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment...

7.8CVSS6.8AI score0.00386EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.37 views

Rocky Linux 9 : runc (RLSA-2022:8090)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:8090 advisory. - runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. A bug was found in runc prior to version 1.1.2 where runc...

7.8CVSS7.2AI score0.00386EPSS
Exploits0References3
OSV
OSV
added 2023/08/31 12:13 p.m.1 views

BELL-CVE-2022-29162 CVE-2022-29162 does not affect BellSoft software

Bulletin has no description...

7.8CVSS7.3AI score0.00386EPSS
Exploits0References1
Rosalinux
Rosalinux
added 2023/08/08 7:51 a.m.40 views

Advisory ROSA-SA-2023-2209

software: runc 1.1.7 OS: ROSA-CHROME packageevrstring: runc-1.1.1.7-1.src.rpm CVE-ID: CVE-2021-43784 BDU-ID: 2023-02652 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Runc isolated container tool is related to integer overflow. Exploitation of the vulnerability allows an attacker acting...

7.8CVSS7.1AI score0.01663EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/06/28 12:0 a.m.27 views

Amazon Linux 2023 : runc (ALAS2023-2023-231)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-231 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks ...

5.5AI score
Exploits0References2
Amazon
Amazon
added 2023/06/27 12:0 a.m.7 views

Low: runc

Issue Overview: No CVE associated with this advisory Affected Packages: runc Issue Correction: Run dnf update runc --releasever 2023.1.20230628 or dnf update --advisory ALAS2023-2023-231 --releasever 2023.1.20230628 to update your system. More information on how to update your system can be found...

7.8CVSS7.2AI score0.00386EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/05/24 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-6088-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.01663EPSS
Exploits3References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/15 6:0 p.m.47 views

Security Bulletin: Open Source Dependency Vulnerability

Summary IBM Edge Application Manager 4.5 has resolved the vulnerability. Vulnerability Details CVEID:CVE-2022-29162 DESCRIPTION: Open Container Initiative runc could allow a local attacker to gain elevated privileges on the system, caused by an issue with runc exec --cap executed processes with...

7.8CVSS6.6AI score0.00386EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.27 views

Debian: Security Advisory (DLA-3369-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.9AI score0.06604EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2023/02/16 12:0 a.m.54 views

Rocky Linux 8 : container-tools:rhel8 (RLSA-2022:7457)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:7457 advisory. - runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. A bug was found in runc prior to version 1.1.2 whe...

7.8CVSS7.5AI score0.03931EPSS
Exploits2References59
Tenable Nessus
Tenable Nessus
added 2022/11/22 12:0 a.m.34 views

Oracle Linux 9 : runc (ELSA-2022-8090)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2022-8090 advisory. 4:1.1.4-1 - update to https://github.com/opencontainers/runc/releases/tag/v1.1.4 - Related: 2061316 Tenable has extracted the preceding description block direct...

7.8CVSS7.4AI score0.00386EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/11/15 3:31 p.m.29 views

Low: Red Hat Security Advisory: runc security update

An update for runc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

7.8CVSS6.8AI score0.00386EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2022/11/15 6:15 a.m.45 views

runc security update

An update is available for runc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The runC tool is a lightweight, portable implementation of the Open Container...

7.8CVSS7.6AI score0.00386EPSS
Exploits0
Rows per page
Query Builder