rpm package
opensuse/crun&distro=openSUSE Leap 15.6
pkg:rpm/opensuse/crun&distro=openSUSE%20Leap%2015.6
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-24965 | Hig | — | < 1.20-bp156.2.3.1 | 1.20-bp156.2.3.1 | Feb 19, 2025 | crun is an open source OCI Container Runtime fully written in C. In affected versions A malicious container image could trick the krun handler into escaping the root filesystem, allowing file creation or modification on the host. No special permissions are needed, only the abilit | |
| CVE-2024-21626 | — | < 1.20-bp156.2.3.1 | 1.20-bp156.2.3.1 | Jan 31, 2024 | runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc exec) to have a working directory in the h |
- affected < 1.20-bp156.2.3.1fixed 1.20-bp156.2.3.1
crun is an open source OCI Container Runtime fully written in C. In affected versions A malicious container image could trick the krun handler into escaping the root filesystem, allowing file creation or modification on the host. No special permissions are needed, only the abilit
- CVE-2024-21626Jan 31, 2024affected < 1.20-bp156.2.3.1fixed 1.20-bp156.2.3.1
runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc exec) to have a working directory in the h