CVE-2025-52881 affecting package moby-runc for versions less than 1.2.8-1

CVE-2025-52881 affecting package moby-runc for versions less than 1.2.8-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-31133 affecting package moby-runc for versions less than 1.2.8-1

CVE-2025-31133 affecting package moby-runc for versions less than 1.2.8-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-52565 affecting package moby-runc for versions less than 1.2.8-1

CVE-2025-52565 affecting package moby-runc for versions less than 1.2.8-1. An upgraded version of the package is available that resolves this issue...

AZL-69824 CVE-2025-52881 affecting package moby-runc for versions less than 1.2.8-1

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts we have also verified thi...

AZL-69821 CVE-2025-52565 affecting package moby-runc for versions less than 1.2.8-1

runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside the container, an attacker can...

AZL-69818 CVE-2025-31133 affecting package moby-runc for versions less than 1.2.8-1

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

CVE-2024-45310 affecting package moby-runc for versions less than 1.1.9-8

CVE-2024-45310 affecting package moby-runc for versions less than 1.1.9-8. A patched version of the package is available...

Azure Linux 3.0 Security Update: cri-tools / moby-runc / runc (CVE-2024-45310)

The version of cri-tools / moby-runc / runc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45310 advisory. - runc is a CLI tool for spawning and running containers according to the OCI...

CBL Mariner 2.0 Security Update: cri-tools / kubernetes / kubevirt / moby-runc (CVE-2024-21626M)

The version of cri-tools / kubernetes / kubevirt / moby-runc installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-21626M advisory. - NIST NVD Details CVE-2024-21626 Note that Nessus has not tested for...

CVE-2024-21626 affecting package moby-runc for versions less than 1.1.9-4

CVE-2024-21626 affecting package moby-runc for versions less than 1.1.9-4. A patched version of the package is available...

AZL-34087 CVE-2024-21626 affecting package moby-runc for versions less than 1.1.9-4

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process from runc exec to have a working directory in the host filesystem...

CVE-2023-28642 affecting package moby-runc for versions less than 1.1.5-1

CVE-2023-28642 affecting package moby-runc for versions less than 1.1.5-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-27561 affecting package moby-runc for versions less than 1.1.5-1

CVE-2023-27561 affecting package moby-runc for versions less than 1.1.5-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-25809 affecting package moby-runc for versions less than 1.1.5-1

CVE-2023-25809 affecting package moby-runc for versions less than 1.1.5-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-25809 affecting package moby-runc 1.1.2+azure-4

CVE-2023-25809 affecting package moby-runc 1.1.2+azure-4. An upgraded version of the package is available that resolves this issue...

CVE-2023-28642 affecting package moby-runc 1.1.2+azure-4

CVE-2023-28642 affecting package moby-runc 1.1.2+azure-4. An upgraded version of the package is available that resolves this issue...

CVE-2023-27561 affecting package moby-runc 1.1.2+azure-4

CVE-2023-27561 affecting package moby-runc 1.1.2+azure-4. An upgraded version of the package is available that resolves this issue...

AZL-25851 CVE-2023-25809 affecting package moby-runc for versions less than 1.1.5-1

runc is a CLI tool for spawning and running containers according to the OCI specification. In affected versions it was found that rootless runc makes /sys/fs/cgroup writable in following conditons: 1. when runc is executed inside the user namespace, and the config.json does not specify the cgroup...

AZL-25850 CVE-2023-28642 affecting package moby-runc for versions less than 1.1.5-1

runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration. This issue has been fixed in runc version 1.1.5, by prohibiting symlinked /proc...

CBL Mariner 2.0 Security Update: moby-runc (CVE-2022-24769)

The version of moby-runc installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-24769 advisory. - Moby is an open-source project created by Docker to enable and accelerate software containerization. A bu...