QID 997036

Date Published: 2024-02-01

QID 997036: GO (Go) Security Update for github.com/opencontainers/runc (GHSA-xr7r-f8xq-vfvv)

In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc exec) to have a working directory in the host filesystem namespace, allowing for a container escape by giving access to the host filesystem ("attack 2"). The same attack could be used by a malicious image to allow a container process to gain access to the host filesystem through runc run ("attack 1"). Variants of attacks 1 and 2 could be also be used to overwrite semi-arbitrary host binaries, allowing for complete container escapes ("attack 3a" and "attack 3b").

Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.

CVSS V3 rated as Critical - 8.6 severity.

CVSS V2 rated as Medium - 5.4 severity.

Solution

Refer to Github security advisory GHSA-xr7r-f8xq-vfvv for updates and patch information.

Vendor References

GHSA-xr7r-f8xq-vfvv - github.com/advisories/GHSA-xr7r-f8xq-vfvv

CVEs related to QID 997036

CVE-2024-21626 |

Software Advisories

Advisory ID	Software	Component	Link
GHSA-xr7r-f8xq-vfvv	github.com/opencontainers/runc		github.com/advisories/GHSA-xr7r-f8xq-vfvv

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].