Lucene search
K

109 matches found

OSV
OSV
added 2024/08/21 3:29 p.m.14 views

GO-2022-0815 Improper input validation in umoci in github.com/opencontainers/umoci

Improper input validation in umoci in github.com/opencontainers/umoci...

5.5CVSS5.6AI score0.00344EPSS
Exploits0References4
OSV
OSV
added 2024/08/21 3:11 p.m.22 views

GO-2022-0452 Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc...

7.8CVSS7.8AI score0.00386EPSS
Exploits0References7
OSV
OSV
added 2024/08/21 2:30 p.m.7 views

GO-2022-0396 Devices resource list treated as a blacklist by default in github.com/opencontainers/runc

Devices resource list treated as a blacklist by default in github.com/opencontainers/runc...

7.1AI score
Exploits0References1
OSV
OSV
added 2024/08/20 8:29 p.m.27 views

GO-2023-1683 AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

AppArmor bypass with symlinked /proc in github.com/opencontainers/runc...

7.8CVSS6.7AI score0.00343EPSS
Exploits0References2
OSV
OSV
added 2024/08/20 8:29 p.m.21 views

GO-2023-1627 Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc...

7CVSS7.4AI score0.00448EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.19 views

RHEL 9 : cri-o (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - opencontainers: OCI manifest and index parsing confusion CVE-2021-41190 Note that Nessus has not tested for this...

5CVSS6.5AI score0.02085EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.30 views

RHEL 8 : opencontainers (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - opencontainers: OCI manifest and index parsing confusion CVE-2021-41190 Note that Nessus has not tested for this...

7.4AI score0.02085EPSS
Exploits0References1
OSV
OSV
added 2024/04/30 9:39 a.m.20 views

GHSA-2CGQ-H8XW-2V5J CRI-O vulnerable to an arbitrary systemd property injection

Impact On CRI-O, it looks like an arbitrary systemd property can be injected via a Pod annotation: --- apiVersion: v1 kind: Pod metadata: name: poc-arbitrary-systemd-property-injection annotations: I believe that ExecStart with an arbitrary command works here too, but I haven't figured out how to...

7.2CVSS7.1AI score0.01418EPSS
Exploits0References7
Packet Storm
Packet Storm
added 2024/02/05 12:0 a.m.409 views

runc 1.1.11 File Descriptor Leak Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'runc docker File Descriptor Leak Privilege Escalation', 'Description' = %q All versions of runc MSFLICENSE, 'Author' = 'h00die', msf module 'Rory...

8.6CVSS7.4AI score0.18087EPSS
Exploits18
OpenVAS
OpenVAS
added 2023/08/17 12:0 a.m.32 views

Fedora: Security Advisory for golang-github-opencontainers-runc (FEDORA-2023-6e6d9065e0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS7.7AI score0.00457EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/08/16 12:0 a.m.33 views

Fedora 37 : golang-github-opencontainers-runc (2023-9edf2145fb)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-9edf2145fb advisory. Add commit c0be1aa2d101dcd3074b5a0e486d58d3f9568d81 as a patch for github.com/containers/common ---- Security fix for CVE-2023-27561 Update to 1.1.8...

7CVSS7.1AI score0.00457EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2023/08/16 12:0 a.m.21 views

Fedora: Security Advisory for golang-github-opencontainers-runc (FEDORA-2023-9edf2145fb)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS7.7AI score0.00457EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/08/16 12:0 a.m.28 views

Fedora 38 : golang-github-opencontainers-runc (2023-6e6d9065e0)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-6e6d9065e0 advisory. Add commit c0be1aa2d101dcd3074b5a0e486d58d3f9568d81 as a patch for github.com/containers/common ---- Security fix for CVE-2023-27561 Update to 1.1.8...

7CVSS7.1AI score0.00457EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2023/04/07 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2023-0125)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.00448EPSS
Exploits2References5
OSV
OSV
added 2023/04/06 9:20 p.m.6 views

MGASA-2023-0125 Updated opencontainers-runc packages fix security vulnerability

/sys/fs/cgroup is writable when cgroupns isn't unshared CVE-2023-25809 Regression that reintroduced CVE-2019-19921 - Incorrect Access Control leading to Escalation of Privileges CVE-2023-27561 AppArmor/SELinux bypass with symlinked /proc CVE-2023-28642...

7.8CVSS6.7AI score0.00448EPSS
Exploits2References4
Mageia
Mageia
added 2023/04/06 9:20 p.m.58 views

Updated opencontainers-runc packages fix security vulnerability

/sys/fs/cgroup is writable when cgroupns isn't unshared CVE-2023-25809 Regression that reintroduced CVE-2019-19921 - Incorrect Access Control leading to Escalation of Privileges CVE-2023-27561 AppArmor/SELinux bypass with symlinked /proc CVE-2023-28642...

7.8CVSS7AI score0.00448EPSS
Exploits2References3
Veracode
Veracode
added 2023/04/05 1:38 p.m.199 views

Symlink Bypass

github.com/opencontainers/runc is vulnerable to Symlink Attack. The vulnerability exists because the proc and sysfs attributes do not properly check whether the destination is a symlink or not, which allows an attacker to bypass the AppArmor or SELinux when /proc inside the container is symlinked...

7.8CVSS7.2AI score0.00343EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2023/03/03 9:30 p.m.116 views

GHSA-VPVM-3WQ2-2WVM Opencontainers runc Incorrect Authorization vulnerability

runc 1.0.0-rc95 through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfslinux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. NOTE: this issue...

7CVSS6.9AI score0.00448EPSS
Exploits1References19
Github Security Blog
Github Security Blog
added 2023/03/03 9:30 p.m.45 views

Opencontainers runc Incorrect Authorization vulnerability

runc 1.0.0-rc95 through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfslinux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. NOTE: this issue...

7CVSS6.8AI score0.00448EPSS
Exploits1References19Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/02/21 12:0 a.m.36 views

Debian dla-3322 : golang-github-opencontainers-selinux-dev - security update

The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3322 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3322-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS7.1AI score0.04409EPSS
Exploits1References4
Rows per page
Query Builder