Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.15 views

RHCOS 4 : OpenShift Container Platform 4.14.59 (RHSA-2025:21328)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:21328 advisory. - net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 - runc: container escape via...

9.1CVSS7.3AI score0.00778EPSS
Exploits4References10
RedHat Linux
RedHat Linux
added 2026/03/17 6:49 a.m.5 views

runc: container escape via 'masked path' abuse due to mount race conditions

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

7.8CVSS5.8AI score0.0067EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2026/03/12 8:57 p.m.5 views

Important: Red Hat Security Advisory: runc security update

An update for runc is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.4CVSS7.1AI score0.0067EPSS
Exploits5References5
RedHat Linux
RedHat Linux
added 2026/03/12 8:57 p.m.7 views

runc: container escape via 'masked path' abuse due to mount race conditions

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

7.8CVSS5.8AI score0.0067EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2026/01/30 3:14 p.m.4 views

runc: container escape via 'masked path' abuse due to mount race conditions

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

7.8CVSS5.8AI score0.0067EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : container-tools:rhel8 (AXSA:2025-11112:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11112:01 advisory. runc: container escape via 'masked path' abuse due to mount race conditions CVE-2025-31133 runc: container escape with malicious config due to...

8.4CVSS5.8AI score0.0067EPSS
Exploits4References4
RedHat Linux
RedHat Linux
added 2026/01/15 12:25 a.m.5 views

runc: container escape via 'masked path' abuse due to mount race conditions

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

7.8CVSS5.8AI score0.0067EPSS
Exploits2References5
Rockylinux
Rockylinux
added 2025/11/21 6:13 p.m.5 views

runc security update

An update is available for runc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The runC tool is a lightweight, portable implementation of the Open Container...

8.4CVSS6.9AI score0.0067EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.8 views

RHEL 8 : container-tools:rhel8 (RHSA-2025:21232)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:21232 advisory. The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: runc:...

8.4CVSS7AI score0.0067EPSS
Exploits4References8
RedHat Linux
RedHat Linux
added 2025/11/11 3:7 p.m.4 views

runc: container escape via 'masked path' abuse due to mount race conditions

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

7.8CVSS5.8AI score0.0067EPSS
Exploits2References5
Microsoft CVE
Microsoft CVE
added 2025/11/09 9:2 a.m.7 views

runc container escape via "masked path" abuse due to mount race conditions

...

7.8CVSS6.8AI score0.0067EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2025/11/07 6:11 p.m.19 views

Important: Red Hat Security Advisory: runc security update

An update for runc is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.4CVSS7.1AI score0.0067EPSS
Exploits4References4
CVE
CVE
added 2025/11/06 6:47 p.m.171 views

CVE-2025-31133

CVE-2025-31133 (runc) affects the runc runtime when using certain bind-mount sources, where verification of the source inode for "/dev/null" could be bypassed. Affected versions include 1.2.7 and earlier, 1.3.0-rc.1 through 1.3.1, and 1.4.0-rc.1 and 1.4.0-rc.2. The issue enables an attacker to pe...

7.8CVSS6.3AI score0.0067EPSS
Exploits2References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/06 6:47 p.m.1 views

CVE-2025-31133 runc container escape via "masked path" abuse due to mount race conditions

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.3CVSS6.5AI score0.0067EPSS
Exploits2References5
EUVD
EUVD
added 2025/11/06 6:47 p.m.2 views

EUVD-2025-37945

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.3CVSS6.3AI score0.0067EPSS
Exploits2References6
Cvelist
Cvelist
added 2025/11/06 6:47 p.m.13 views

CVE-2025-31133 runc container escape via "masked path" abuse due to mount race conditions

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.3CVSS0.0067EPSS
Exploits2References5
SUSE Linux
SUSE Linux
added 2025/11/05 10:23 a.m.23 views

Security update for runc

This update for runc fixes the following issues: CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252232. CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races bsc1252232. CVE-2025-52881: Fixed...

7.8CVSS7AI score0.0067EPSS
Exploits4References8
OSV
OSV
added 2025/11/05 10:23 a.m.10 views

SUSE-SU-2025:3951-1 Security update for runc

This update for runc fixes the following issues: - CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252232. - CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races bsc1252232. - CVE-2025-52881: Fixed...

8.4CVSS7AI score0.0067EPSS
Exploits4References5
SUSE Linux
SUSE Linux
added 2025/11/05 10:23 a.m.4 views

Security update for runc

This update for runc fixes the following issues: CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252232. CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races bsc1252232. CVE-2025-52881: Fixed...

7.8CVSS6.9AI score0.0067EPSS
Exploits4References8
Rows per page
Query Builder