runc up to and including 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vulnerability does not affect Docker due to an implementation detail that happens to block the attack.)
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linuxfoundation runc 1.0.0 |
||
linuxfoundation runc |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
||
opensuse leap 15.1 |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 19.10 |
||
redhat openshift container platform 4.1 |
||
redhat openshift container platform 4.2 |