200 matches found
CVE-2018-20168
Google gVisor before 2018-08-22 reuses a pagetable in a different level with the paging-structure cache intact, which allows attackers to cause a denial of service "physical address not valid" panic via a crafted application...
Code injection
Google gVisor before 2018-08-22 reuses a pagetable in a different level with the paging-structure cache intact, which allows attackers to cause a denial of service "physical address not valid" panic via a crafted application...
CVE-2018-20168
Google gVisor before 2018-08-22 reuses a pagetable in a different level with the paging-structure cache intact, which allows attackers to cause a denial of service "physical address not valid" panic via a crafted application...
CVE-2018-20168
CVE-2018-20168 affects Google gVisor prior to 2018-08-22. The vulnerability arises when a pagetable is reused across different levels while the paging-structure cache remains intact, enabling a crafted application to trigger a denial of service via a “physical address not valid” panic. The availa...
Google gVisor Denial of Service Vulnerability
Google gVisor is a user-space kernel written in the Go language for use in Linux systems. A denial of service vulnerability exists in versions of Google gVisor prior to 2018-08-22, which can be exploited by an attacker to cause a denial of service...
Memory Overwrite
github.com/google/gvisor is vulnerable to memory overwrite attacks. The vulnerability through repeated calls of shmctlIPCRMID which forces a segment to be destroyed prematurely. This could be reused and accessible by a different process...
Google gVisor Elevation of Privilege Vulnerability
Google gVisor is a user-space kernel written in the Go language for use in Linux systems. A security vulnerability in the pkg/sentry/kernel/shm/shm.go file in versions of Google gVisor prior to 2018-11-01 stems from the program not handling reference counting correctly. An attacker could use the...
CVE-2018-19333
pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01 allows attackers to overwrite memory locations in processes running as root but not escape the sandbox via vectors involving IPCRMID shmctl calls, because reference counting is mishandled...
CVE-2018-19333
pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01 allows attackers to overwrite memory locations in processes running as root but not escape the sandbox via vectors involving IPCRMID shmctl calls, because reference counting is mishandled...
Memory corruption
pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01 allows attackers to overwrite memory locations in processes running as root but not escape the sandbox via vectors involving IPCRMID shmctl calls, because reference counting is mishandled...
CVE-2018-19333
pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01 allows attackers to overwrite memory locations in processes running as root but not escape the sandbox via vectors involving IPCRMID shmctl calls, because reference counting is mishandled...
CVE-2018-19333
CVE-2018-19333 affects Google gVisor (pkg/sentry/kernel/shm/shm.go) prior to 2018-11-01. The issue arises from mishandled reference counting, allowing attackers to overwrite memory locations in processes running as root (but not escape the sandbox) via IPC_RMID shmctl-related vectors. This is a m...
gVisor runsc Guest -> Host Breakout Via Filesystem Cache Desync
Exploit for linux platform in category dos / poc gVisor runsc guest-host breakout via filesystem cache desync The following writeup describes an attack that can be used to overwrite files in the host filesystem /etc/crontab in my PoC from inside a Docker container that uses gVisor's runsc. I test...
Google gVisor File Renaming Vulnerability
gVisor is Google's open source new sandbox container runtime environment . A file renaming vulnerability exists in Google gVisor. The vulnerability stems from Google gVisor's seccomp sandbox allowing access to the renameat system call. An attacker could exploit this vulnerability to rename files ...
Design/Logic Flaw
Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS...
CVE-2018-16359
Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS...
CVE-2018-16359
Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS...
CVE-2018-16359
Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS...
CVE-2018-16359
Google gVisor prior to 2018-08-23 allows access to the renameat system call inside the seccomp sandbox, enabling attackers to rename files on the host OS. The issue is described consistently across multiple sources (NVD and CNVD variants). Affected component/function: gVisor’s seccomp sandbox. Ro...
gVisor Sentry Invalid Access Vulnerability
gVisor Sentry permits access to the renameat syscall. As the sentry is not chrooted, it permits renaming files in the host system. gVisor sentry can call renameat The seccomp sandbox of the gVisor sentry permits access to the renameat syscall:...