Ubuntu Security Update USN-6088-1: runC vulnerabilities

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,808
Reaction score
94
Credits
-1,257
It was discovered that runC incorrectly made /sys/fs/cgroup writable when in rootless mode. An attacker could possibly use this issue to escalate privileges. (CVE-2023-25809) It was discovered that runC incorrectly performed access control when mounting /proc to non-directories. An attacker could possibly use this issue to escalate privileges. (CVE-2023-27561) It was discovered that runC incorrectly handled /proc and /sys mounts inside a container. An attacker could possibly use this issue to bypass AppArmor, and potentially SELinux. (CVE-2023-28642)

Continue reading...
 


Follow Linux.org

Staff online

Members online


Top