Affected by GO-2022-0396
and 5 other vulnerabilities
GO-2022-0396: devices resource list treated as a blacklist by default in github.com/opencontainers/runc
GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc
GO-2022-0914: mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc
GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc
GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc
GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc
package
Version:
v1.0.0-rc4
Opens a new window with list of versions in this module.
Published: Aug 2, 2017
License: Apache-2.0
Opens a new window with license information.
Imports: 7
Opens a new window with list of imports.
Imported by: 289
Opens a new window with list of known importers.
Documentation
¶
type ConfigValidator struct {
}
Source Files
¶
Click to show internal directories.
Click to hide internal directories.