GO-2022-0396
and 8 other vulnerabilities
GO-2022-0396 : Devices resource list treated as a blacklist by default in github.com/opencontainers/runc
GO-2022-0452 : Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc
GO-2022-0835 : Information Exposure in RunC in github.com/opencontainers/runc
GO-2022-0914 : Mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc
GO-2023-1682 : Rootless: /sys/fs/cgroup is writable when cgroupns isn't unshared in github.com/opencontainers/runc
GO-2023-1683 : AppArmor bypass with symlinked /proc in github.com/opencontainers/runc
GO-2024-3110 : Can be confused to create empty files/directories on the host in github.com/opencontainers/runc
GO-2025-3543 : WITHDRAWN: Libcontainer is affected by capabilities elevation in github.com/opencontainers/runc
GO-2025-4098 : Container escape and DDoS due to arbitrary write gadgets and procfs write redirects in github.com/opencontainers/runc
Discover Packages
github.com/opencontainers/runc
libcontainer
keys
package
Version:
v0.1.1
Opens a new window with list of versions in this module.
Published: Apr 25, 2016
License: Apache-2.0
Opens a new window with license information.
Imports: 5
Opens a new window with list of imports.
Imported by: 78
Opens a new window with list of known importers.
Documentation
¶
modify permissions on a keyring by reading the current permissions,
anding the bits with the given mask (clearing permissions) and setting
additional permission bits
¶
Click to show internal directories.
Click to hide internal directories.
Affected by 
Documentation
¶
Source Files