Runc Container Escape Vulnerability Alert

fevereiro 2, 2024

Overview Recently, NSFOCUS CERT detected that the runc officially issued a security notice and fixed a container escaping vulnerability (CVE-2024-21626). Since the internal file descriptor of runc is leaked during initialization and the final working directory is not verified to be located in the mount namespace of the container, attackers can conduct container escaping in […]

Critical runC Container Escape Vulnerability (CVE-2019-5736) Threat Alert

fevereiro 18, 2019

  • Overview

RUNC is a CLI tool for spawning and running containers according to the Open Container Initiative (OCI) specification. As the core of the Docker, runC can be called for creating, running, and destructing containers. (mais…)


Inscreva-se no Blog da NSFOCUS