Lucene search
K

6 matches found

OSV
OSV
added 2025/12/02 4:17 p.m.5 views

CLSA-2025-1764692266 buildah: Fix of 4 CVEs

Update buildah to 1.39.6 - CVE-2025-52881: fix runc vulnerability by updating to runc v1.2.8 - Update golang dependency to 1.22.9.tuxcare.els1 - Remove patches for fixes included in upstream CVE-2024-9341, CVE-2024-9407, CVE-2025-27144...

8.7CVSS7AI score0.0099EPSS
Exploits1References1
OSV
OSV
added 2025/11/20 2:27 p.m.13 views

CLSA-2025-1763648873 runc: Fix of 6 CVEs

upgrade to runc 1.2.8 to fix multiple critical security vulnerabilities: - CVE-2024-21626: fix file descriptor leak vulnerability allowing container escape - CVE-2025-52565: fix container escape with malicious config due to /dev/console mount races - CVE-2025-31133: fix container escape and...

8.6CVSS7.1AI score0.18087EPSS
Exploits23References1
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.10 views

SUSE SLES12 Security Update : runc (SUSE-SU-2025:4077-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4077-1 advisory. Update to runc v1.3.3. Upstream changelog is available from . bsc1252232 CVE-2025-31133 CVE-2025-52565 CVE-2025-52881 Update to runc v1.3.2...

8.4CVSS6.7AI score0.0067EPSS
Exploits4References9
Snyk
Snyk
added 2025/11/05 5:34 p.m.2 views

Race Condition Enabling Link Following

Overview Affected versions of this package are vulnerable to Race Condition Enabling Link Following due to insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside the container. An attacker can gain unauthorized write access to sensitive files within the container environment by...

8.4CVSS7.1AI score0.00523EPSS
Exploits1References3
OSV
OSV
added 2023/07/01 11:5 a.m.4 views

OESA-2023-1383 runc security update

runc is a CLI tool for spawning and running containers according to the OCI specification. Security Fixes: runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a...

7.8CVSS6.8AI score0.00343EPSS
Exploits0References2
OSV
OSV
added 2023/03/29 7:15 p.m.3 views

UBUNTU-CVE-2023-28642

runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration. This issue has been fixed in runc version 1.1.5, by prohibiting symlinked /proc...

7.8CVSS6.8AI score0.00343EPSS
Exploits0References6
Rows per page
Query Builder