Affected by GO-2022-0396
and 6 other vulnerabilities
GO-2022-0396 : devices resource list treated as a blacklist by default in github.com/opencontainers/runc
GO-2022-0452 : Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc
GO-2022-0835 : Information Exposure in RunC in github.com/opencontainers/runc
GO-2022-0914 : mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc
GO-2023-1682 : rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc
GO-2023-1683 : runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc
GO-2024-3110 : runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc
Discover Packages
github.com/opencontainers/runc
libcontainer
devices
package
Version:
v0.0.2
Opens a new window with list of versions in this module.
Published: Jul 17, 2015
License: Apache-2.0
Opens a new window with license information.
Imports: 7
Opens a new window with list of imports.
Imported by: 373
Opens a new window with list of known importers.
Documentation
Documentation
¶
Rendered for
linux/amd64
windows/amd64
Given the path to a device and it's cgroup_permissions(which cannot be easily queried) look up the information about a linux device and return that information as a Device struct.
Source Files
¶
Click to show internal directories.
Click to hide internal directories.