Launchpad.net

CVE 2024-21626

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc exec) to have a working directory in the host filesystem namespace, allowing for a container escape by giving access to the host filesystem ("attack 2"). The same attack could be used by a malicious image to allow a container process to gain access to the host filesystem through runc run ("attack 1"). Variants of attacks 1 and 2 could be also be used to overwrite semi-arbitrary host binaries, allowing for complete container escapes ("attack 3a" and "attack 3b"). runc 1.1.12 includes patches for this issue.

Related bugs and status

CVE-2024-21626 (Candidate) is related to these bugs:

Bug #2051918: Ubuntu CVE-2024-21626 runc vulnerability

		In	Importance	Status
2051918	Ubuntu CVE-2024-21626 runc vulnerability	cloud-images	Critical	In Progress
2051918	Ubuntu CVE-2024-21626 runc vulnerability	runc (Ubuntu)	Undecided	Fix Released
2051918	Ubuntu CVE-2024-21626 runc vulnerability	runc-app (Ubuntu)	Undecided	Fix Released

Bug #2052401: [Debian] Medium CVE: CVE-2024-21626 runc

Summary				In	Importance	Status
	2052401	[Debian] Medium CVE: CVE-2024-21626 runc		StarlingX	High	Triaged

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2024-21626

Related bugs and status

Related bugs

References