CVE-2024-21626

CWE-403CWE-668Exposure to Wrong SphereCWE-200Information ExposureCWE-110419 documents15 sources
Severity
8.6HIGH
EPSS
5.6%
top 9.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Github.com Opencontainers/runcLinuxfoundation RuncOpencontainers Runc+1 more
Timeline
PublishedJan 31
Latest updateJun 28

Description

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc exec) to have a working directory in the host filesystem namespace, allowing for a container escape by giving access to the host filesystem ("attack 2"). The same attack could be used by a malicious image to allow a container process to gain access to the host f

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:HExploitability: 1.8 | Impact: 6.0

Affected Packages4 packages

Gogithub.com/opencontainers/runc1.0.0-rc931.1.12
CVEListV5opencontainers/runc>=v1.0.0-rc93, < 1.1.12
NVDlinuxfoundation/runc< 1.1.12
Debianrunc< 1.0.0~rc93+ds1-5+deb11u3+3

Also affects: Fedora 39

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

6
OSV
Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc2024-06-28
GHSA
runc vulnerable to container breakout through process.cwd trickery and leaked fds2024-01-31
CVEList
runc container breakout through process.cwd trickery and leaked fds2024-01-31
OSV
runc vulnerable to container breakout through process.cwd trickery and leaked fds2024-01-31
OSV
CVE-2024-21626: runc is a CLI tool for spawning and running containers on Linux according to the OCI specification2024-01-31

📋Vendor Advisories

6
Chrome
Long Term Support Channel Update for ChromeOS: CVE-2024-216262024-05-13
Oracle
Oracle Oracle Communications Risk Matrix: Install/Upgrade (runc) — CVE-2024-216262024-04-15
Microsoft
GitHub: CVE-2024-21626 Container breakout through process.cwd trickery and leaked fds2024-02-13
Red Hat
runc: file descriptor leak2024-01-31
Ubuntu
runC vulnerability2024-01-31

🕵️Threat Intelligence

5
Securelist
Exploits and vulnerabilities in Q1 20242024-05-07
Wiz
Crying Out Cloud - March 2024 Newsletter | Wiz2024-03-01
Wiz
Leaky Vessels: Deep Dive on Container Escape Vulnerabilities | Wiz Blog2024-02-05
Wiz
Leaky Vessels: Deep Dive on Container Escape Vulnerabilities | Wiz Blog2024-02-05
Huntress
CVE-2024-21626 Vulnerability: Analysis, Detection, Removal | Huntress
CVE-2024-21626 (HIGH CVSS 8.6) | runc is a CLI tool for spawning and | cvebase.io