rpm package
suse/runc&distro=SUSE OpenStack Cloud 6
pkg:rpm/suse/runc&distro=SUSE%20OpenStack%20Cloud%206
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-8932 | Med | 5.9 | < 0.1.1+gitr2947_9c2d8d1-20.3 | 0.1.1+gitr2947_9c2d8d1-20.3 | Jul 6, 2017 | A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in Go before 1.7.6 and 1.8.x before 1.8.2 causes incorrect results to be generated for specific input points. An adaptive attack can be mounted to progressively extract the scalar input | |
| CVE-2016-9962 | Med | 6.4 | < 0.1.1+gitr2819_50a19c6-15.2 | 0.1.1+gitr2819_50a19c6-15.2 | Jan 31, 2017 | RunC allowed additional container processes via 'runc exec' to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain access to file-descriptors of these new processes during the initialization and can lead to conta | |
| CVE-2016-8867 | Hig | 7.5 | < 0.1.1+gitr2816_02f8fa7-9.1 | 0.1.1+gitr2816_02f8fa7-9.1 | Oct 28, 2016 | Docker Engine 1.12.2 enabled ambient capabilities with misconfigured capability policies. This allowed malicious images to bypass user permissions to access files within the container filesystem or mounted volumes. |
- affected < 0.1.1+gitr2947_9c2d8d1-20.3fixed 0.1.1+gitr2947_9c2d8d1-20.3
A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in Go before 1.7.6 and 1.8.x before 1.8.2 causes incorrect results to be generated for specific input points. An adaptive attack can be mounted to progressively extract the scalar input
- affected < 0.1.1+gitr2819_50a19c6-15.2fixed 0.1.1+gitr2819_50a19c6-15.2
RunC allowed additional container processes via 'runc exec' to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain access to file-descriptors of these new processes during the initialization and can lead to conta
- affected < 0.1.1+gitr2816_02f8fa7-9.1fixed 0.1.1+gitr2816_02f8fa7-9.1
Docker Engine 1.12.2 enabled ambient capabilities with misconfigured capability policies. This allowed malicious images to bypass user permissions to access files within the container filesystem or mounted volumes.