RunC Flaws Enable Container Escapes, Granting Attackers Host Access

By Newsroom — January 31^st 2024 at 20:00

Multiple security vulnerabilities have been disclosed in the runC command line tool that could be exploited by threat actors to escape the bounds of the container and stage follow-on attacks. The vulnerabilities, tracked as CVE-2024-21626, CVE-2024-23651, CVE-2024-23652, and CVE-2024-23653, have been collectively dubbed Leaky Vessels by cybersecurity vendor Snyk. "These container

FreshRSS

RunC Flaws Enable Container Escapes, Granting Attackers Host Access