Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.16 views

Oracle Linux 7 : runc (ELSA-2019-4540)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2019-4540 advisory. - Apply patch for CVE-2019-5736 Wiekus Beukes - Resolves: 1412238 - CVE-2016-9962 - set init processes as non-dumpable, runc patch from Michael Crosby Tenable h...

9.3CVSS7AI score0.9857EPSS
Exploits33References2
OSV
OSV
added 2019/02/17 12:31 a.m.8 views

MGASA-2019-0087 Updated lxc packages fix security vulnerability

LXC allows attackers to overwrite the host LXC binary and consequently obtain host root access by leveraging the ability to execute a command as root within one of these types of containers: a new container with an attacker-controlled image, or an existing container, to which the attacker...

9.3CVSS9AI score0.9857EPSS
Exploits33References3
Mageia
Mageia
added 2019/02/13 11:8 a.m.50 views

Updated opencontainers-runc packages fix security vulnerability

Not using pivotroot2 leaves the host /proc around in the mount namespace so that it is possible to mount another /proc without any other submount, even if /proc in the container is not fully visible. This flaw allows an attacker to read and modify some parts of the Linux kernel memory rhbz1663068...

9.3CVSS5AI score0.9857EPSS
Exploits33References3
OSV
OSV
added 2019/02/13 11:8 a.m.7 views

MGASA-2019-0068 Updated opencontainers-runc packages fix security vulnerability

Not using pivotroot2 leaves the host /proc around in the mount namespace so that it is possible to mount another /proc without any other submount, even if /proc in the container is not fully visible. This flaw allows an attacker to read and modify some parts of the Linux kernel memory rhbz1663068...

9.3CVSS8.4AI score0.9857EPSS
Exploits33References4
NVD
NVD
added 2019/02/11 7:29 p.m.26 views

CVE-2019-5736

runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary and consequently obtain host root access by leveraging the ability to execute a command as root within one of these types of containers: 1 a new container with an...

9.3CVSS8.7AI score0.9857EPSS
Exploits33References66
AlpineLinux
AlpineLinux
added 2019/02/11 12:0 a.m.36 views

CVE-2019-5736

runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary and consequently obtain host root access by leveraging the ability to execute a command as root within one of these types of containers: 1 a new container with an...

9.3CVSS9AI score0.9857EPSS
Exploits33
ATTACKERKB
ATTACKERKB
added 2019/02/11 12:0 a.m.614 views

CVE-2019-5736

runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary and consequently obtain host root access by leveraging the ability to execute a command as root within one of these types of containers: 1 a new container with an...

9.3CVSS7.6AI score0.9857EPSS
In wildExploits50References80
Debian CVE
Debian CVE
added 2019/02/11 12:0 a.m.37 views

CVE-2019-5736

runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary and consequently obtain host root access by leveraging the ability to execute a command as root within one of these types of containers: 1 a new container with an...

9.3CVSS7.6AI score0.9857EPSS
Exploits33
CNVD
CNVD
added 2016/01/16 12:0 a.m.3 views

OpenSSH 'roaming_read' and 'roaming_write' function denial of service vulnerability

OpenSSH is a set of connection tools maintained by the OpenBSD Project Group for secure access to remote computers. The 'roamingread' and 'roamingwrite' functions in the roamingcommon.c file in OpenSSH's client, when, with specific proxy and forwarding options enabled, the Failure to properly...

8.1CVSS8AI score0.2037EPSS
Exploits3References1
Rows per page
Query Builder