RHSA-2023:6380MediumCVSS 7.8

Red Hat Security Advisory: runc security update

Published
November 7, 2023
Last Modified
June 29, 2026

🔗 CVE IDs covered (5)

📋 Description

CVE-2021-43784 — runc: integer overflow in netlink bytemsg length field allows attacker to override netlink-based container configuration CVE-2022-41724 — golang: crypto/tls: large handshake records may cause panics CVE-2023-25809 — runc: Rootless runc makes /sys/fs/cgroup writable CVE-2023-27561 — runc: volume mount race condition (regression of CVE-2019-19921) CVE-2023-28642 — runc: AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration

🔗 References (9)