Affected by GO-2021-0085
and 7 other vulnerabilities
GO-2021-0085: Authorization bypass in github.com/opencontainers/runc
GO-2022-0396: devices resource list treated as a blacklist by default in github.com/opencontainers/runc
GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc
GO-2022-0835: Information Exposure in RunC in github.com/opencontainers/runc
GO-2022-0914: mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc
GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc
GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc
GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc
package
Version:
v0.0.2
Opens a new window with list of versions in this module.
Published: Jul 17, 2015
License: Apache-2.0
Opens a new window with license information.
Imports: 7
Opens a new window with list of imports.
Imported by: 725
Opens a new window with list of known importers.
Documentation
¶
ExitStatus returns the correct exit status for a process based on if it
was signaled or existed cleanly.
GenerateRandomName returns a new name joined with a prefix. This size
specified is used to truncate the randomly generated value
ResolveRootfs ensures that the current working directory is
not a symlink and returns the absolute path to the rootfs
Source Files
¶
Click to show internal directories.
Click to hide internal directories.