pkg:Go/github.com/opencontainers/runc

All known vulnerabilities

• HIGH8.6CVE-2024-21626runc - security update
  >= 1.0.0-rc93, < 1.1.12
• HIGH8.6CVE-2024-21626runc - security update
  >= 1.0.0-rc93, < 1.1.12
• HIGH7.8CVE-2025-31133Container escape via "masked path" abuse due to mount race conditions in github.com/opencontainers/runc
  from 0, < 1.2.8
• HIGH7.8Container escape via "masked path" abuse due to mount race conditions in github.com/opencontainers/runc
  from 0, < 1.2.8, >= 1.3.0-rc.1, < 1.3.3, >= 1.4.0-rc.1, < 1.4.0-rc.3
• HIGH7.8Privilege escalation in github.com/opencontainers/runc
  from 0, < 0.1.0
• HIGH7.8Privilege escalation in github.com/opencontainers/runc
  from 0, < 0.1.0
• HIGH7.6Mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc
  from 0, < 1.0.0-rc95
• HIGH7.6Mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc
  from 0, < 1.0.0-rc95
• HIGH7.5Container escape and DDoS due to arbitrary write gadgets and procfs write redirects in github.com/opencontainers/runc
  from 0, < 1.2.8, >= 1.3.0-rc.1, < 1.3.3, >= 1.4.0-rc.1, < 1.4.0-rc.3
• HIGH7.5Container escape and DDoS due to arbitrary write gadgets and procfs write redirects in github.com/opencontainers/runc
  from 0, < 1.2.8
• HIGH7.5Container escape with malicious config due to /dev/console mount and related races in github.com/opencontainers/runc
  >= 1.0.0-rc3, < 1.2.8
• HIGH7.5Container escape with malicious config due to /dev/console mount and related races in github.com/opencontainers/runc
  >= 1.0.0-rc3, < 1.2.8, >= 1.3.0-rc.1, < 1.3.3, >= 1.4.0-rc.1, < 1.4.0-rc.3
• HIGH7.5runc - security update
  from 0, < 1.0.0-rc8.0.20190930145003-cad42f6e0932
• HIGH7.5runc - security update
  from 0, < 1.0.0-rc8.0.20190930145003-cad42f6e0932
• HIGH7.0Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc
  >= 1.0.0-rc95, < 1.1.5
• HIGH7.0Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc
  >= 1.0.0-rc95, < 1.1.5
• MEDIUM6.4Information Exposure in RunC in github.com/opencontainers/runc
  from 0, < 1.0.0-rc3
• MEDIUM6.4Information Exposure in RunC in github.com/opencontainers/runc
  from 0, < 1.0.0-rc3
• MEDIUM6.1AppArmor bypass with symlinked /proc in github.com/opencontainers/runc
  from 0, < 1.1.5
• MEDIUM6.1AppArmor bypass with symlinked /proc in github.com/opencontainers/runc
  from 0, < 1.1.5
• MEDIUM6.0runc - security update
  from 0, < 1.0.3
• MEDIUM6.0runc - security update
  >= 1.0.1-0.20211012131345-9c444070ec7b, < 1.1.0
• MEDIUM5.9Libcontainer is affected by capabilities elevation similar to GHSA-f3fp-gc8g-vw66
  from 0
• MEDIUM5.9Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc
  from 0, < 1.1.2
• MEDIUM5.9Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc
  from 0, < 1.1.2
• MEDIUM5.9Race condition in github.com/opencontainers/runc
  from 0, < 1.0.0-rc9.0.20200122160610-2fc03cc11c77
• MEDIUM5.9Race condition in github.com/opencontainers/runc
  from 0, < 1.0.0-rc9.0.20200122160610-2fc03cc11c77
• LOW3.6Can be confused to create empty files/directories on the host in github.com/opencontainers/runc
  from 0, < 1.1.14
• LOW3.6Can be confused to create empty files/directories on the host in github.com/opencontainers/runc
  from 0, < 1.1.14, >= 1.2.0-rc.1, < 1.2.0-rc.3
• LOW2.5Rootless: /sys/fs/cgroup is writable when cgroupns isn't unshared in github.com/opencontainers/runc
  from 0, < 1.1.5
• LOW2.5Rootless: /sys/fs/cgroup is writable when cgroupns isn't unshared in github.com/opencontainers/runc
  from 0, < 1.1.5