Runc Container Escape Vulnerability Alert
fevereiro 2, 2024
Overview Recently, NSFOCUS CERT detected that the runc officially issued a security notice and fixed a container escaping vulnerability (CVE-2024-21626). Since the internal file descriptor of runc is leaked during initialization and the final working directory is not verified to be located in the mount namespace of the container, attackers can conduct container escaping in […]
Critical runC Container Escape Vulnerability (CVE-2019-5736) Threat Alert
fevereiro 18, 2019
-
Overview
RUNC is a CLI tool for spawning and running containers according to the Open Container Initiative (OCI) specification. As the core of the Docker, runC can be called for creating, running, and destructing containers. (mais…)