CVE-2023-28642
CVSS v3.1
7.8 (High)
EPSS
0.04 % (10th)
Affected Products
1
Advisories
18
runc is a CLI tool for spawning and running containers according to the OCI specification. It was found that AppArmor can be bypassed when /proc
inside the container is symlinked with a specific mount configuration. This issue has been fixed in runc version 1.1.5, by prohibiting symlinked /proc
. See PR #3785 for details. users are advised to upgrade. Users unable to upgrade should avoid using an untrusted container image.
Weaknesses
- CVE Status
- PUBLISHED
- CNA
- GitHub, Inc.
- Published Date
-
2023-03-29 19:15:22
(17 months ago) - Updated Date
-
2023-11-07 04:10:46
(10 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...