| CNNVD-ID编号 | CNNVD-201909-1170 |
| CVE编号 | CVE-2019-16884 |
| 发布时间 | 2019-09-25 |
| 更新时间 | 2020-03-16 |
| 漏洞类型 | 其他 |
| 漏洞来源 | Ubuntu,Red Hat,Gentoo |
| 危险等级 | 高危 |
| 威胁类型 | N/A |
| 厂 商 | N/A |
runc是一款用于根据OCI规范生成和运行容器的CLI(命令行界面)工具。
runc 1.0.0-rc8及之前版本(使用在Docker 19.03.2-ce及之前版本和其他产品)中存在安全漏洞,该漏洞源于libcontainer/rootfs_linux.go文件没有正确检查挂载目标。攻击者可利用该漏洞绕过AppArmor限制。
目前厂商已发布升级了runc 安全漏洞的补丁,runc 安全漏洞的补丁获取链接:
https://github.com/opencontainers/runc/issues/2128
来源:MISC
来源:FEDORA
来源:www.suse.com
链接:https://www.suse.com/support/update/announcement/2019/suse-su-20192810-1.html
来源:www.suse.com
链接:https://www.suse.com/support/update/announcement/2020/suse-su-20200065-1.html
来源:www.mozilla.org
链接:https://www.mozilla.org/en-US/security/advisories/mfsa2019-36/
来源:access.redhat.com
来源:access.redhat.com
来源:www.suse.com
链接:https://www.suse.com/support/update/announcement/2019/suse-su-20192787-1.html
来源:www.suse.com
链接:https://www.suse.com/support/update/announcement/2019/suse-su-20192786-1.html
来源:www.suse.com
链接:https://www.suse.com/support/update/announcement/2020/suse-su-20200035-1.html
来源:access.redhat.com
来源:access.redhat.com
来源:access.redhat.com
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/156741/Gentoo-Linux-Security-Advisory-202003-21.html
来源:www.auscert.org.au
来源:www.auscert.org.au
来源:www.auscert.org.au
来源:www.auscert.org.au
来源:www.auscert.org.au
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/156659/Ubuntu-Security-Notice-USN-4297-1.html
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/155423/Red-Hat-Security-Advisory-2019-3940-01.html
来源:www.auscert.org.au
来源:vigilance.fr
链接:https://vigilance.fr/vulnerability/runc-privilege-escalation-via-AppArmor-proc-Mount-30639
来源:www.auscert.org.au
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/155542/Red-Hat-Security-Advisory-2019-4074-01.html
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/155704/Red-Hat-Security-Advisory-2019-4269-01.html
来源:nvd.nist.gov
暂无