Ubuntu Security Update USN-7851-1: runC vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,793
Reaction score
74
Credits
-1,257
Lei Wang and Li Fubang discovered that runC incorrectly handled masked paths. An attacker could possibly replace a container's /dev/null with a symlink to some other procfs file and possibly escape a container. (CVE-2025-31133) Lei Wang and Li Fubang discovered that runC incorrectly handled the /dev/console bind-mounts. An attacker could potentially exploit this issue to build-mount a symlink and escape a container. (CVE-2025-52565) Li Fubang and Tõnis Tiigi discovered that the fix for CVE-2019-16884 was incomplete. An attacker could possibly use this issue to cause a denial of service or escape the container. (CVE-2025-52881)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-7851-2: runC regression
Replies
0
Views
233
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8286-1: OpenVPN vulnerabilities
Replies
0
Views
75
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8277-1: Linux kernel vulnerabilities
Replies
0
Views
92
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8310-1: Linux kernel (Azure) vulnerabilities
Replies
0
Views
54
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8338-1: Apache HTTP Server vulnerabilities
Replies
0
Views
61
LinuxBot
LinuxBot


Follow Linux.org

Staff online

Members online

Total: 2,604 (members: 7, guests: 2,597)

Latest posts

Top