types

Oct 21, 2024

Changes in this version

type Blkio

+ PSI *PSIStats

type Cpu

+ PSI *PSIStats

type Memory

+ PSI *PSIStats

+ type PSIData = cgroups.PSIData

+ type PSIStats = cgroups.PSIStats

Jun 26, 2024 GO-2024-3110

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Apr 3, 2024 GO-2024-3110

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jun 13, 2024 GO-2024-3110

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jan 23, 2024 GO-2024-3110

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jan 2, 2024 GO-2024-2491 +1 more

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Nov 1, 2023 GO-2024-2491 +1 more

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Aug 10, 2023 GO-2024-2491 +1 more

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jul 19, 2023 GO-2024-2491 +1 more

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Apr 26, 2023 GO-2024-2491 +1 more

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Apr 11, 2023 GO-2024-2491 +1 more

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Mar 29, 2023 GO-2024-2491 +1 more

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Aug 24, 2022 GO-2023-1627 +4 more

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jun 8, 2022 GO-2023-1627 +4 more

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

May 5, 2022 GO-2023-1627 +4 more

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Mar 28, 2022 GO-2022-0452 +5 more

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jan 17, 2022 GO-2022-0452 +5 more

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Dec 14, 2021 GO-2022-0274 +6 more

  GO-2022-0274: Namespace restriction bypass in github.com/opencontainers/runc

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Dec 3, 2021 GO-2022-0274 +6 more

  GO-2022-0274: Namespace restriction bypass in github.com/opencontainers/runc

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Aug 20, 2021 GO-2022-0274 +6 more

  GO-2022-0274: Namespace restriction bypass in github.com/opencontainers/runc

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jul 16, 2021 GO-2022-0274 +6 more

  GO-2022-0274: Namespace restriction bypass in github.com/opencontainers/runc

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jun 17, 2021 GO-2022-0452 +5 more

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Changes in this version

+ type Blkio struct

+ IoMergedRecursive []BlkioEntry

+ IoQueuedRecursive []BlkioEntry

+ IoServiceBytesRecursive []BlkioEntry

+ IoServiceTimeRecursive []BlkioEntry

+ IoServicedRecursive []BlkioEntry

+ IoTimeRecursive []BlkioEntry

+ IoWaitTimeRecursive []BlkioEntry

+ SectorsRecursive []BlkioEntry

+ type BlkioEntry struct

+ Major uint64

+ Minor uint64

+ Op string

+ Value uint64

+ type CPUSet struct

+ CPUExclusive uint64

+ CPUs []uint16

+ MemExclusive uint64

+ MemHardwall uint64

+ MemoryMigrate uint64

+ MemoryPressure uint64

+ MemorySpreadPage uint64

+ MemorySpreadSlab uint64

+ Mems []uint16

+ SchedLoadBalance uint64

+ SchedRelaxDomainLevel int64

+ type Cpu struct

+ Throttling Throttling

+ Usage CpuUsage

+ type CpuUsage struct

+ Kernel uint64

+ Percpu []uint64

+ PercpuKernel []uint64

+ PercpuUser []uint64

+ Total uint64

+ User uint64

+ type Event struct

+ Data interface{}

+ ID string

+ Type string

+ type Hugetlb struct

+ Failcnt uint64

+ Max uint64

+ Usage uint64

+ type IntelRdt struct

+ CMTStats *[]intelrdt.CMTNumaNodeStats

+ L3CacheInfo *L3CacheInfo

+ L3CacheSchema string

+ L3CacheSchemaRoot string

+ MBMStats *[]intelrdt.MBMNumaNodeStats

+ MemBwInfo *MemBwInfo

+ MemBwSchema string

+ MemBwSchemaRoot string

+ type L3CacheInfo struct

+ CbmMask string

+ MinCbmBits uint64

+ NumClosids uint64

+ type MemBwInfo struct

+ BandwidthGran uint64

+ DelayLinear uint64

+ MinBandwidth uint64

+ NumClosids uint64

+ type Memory struct

+ Cache uint64

+ Kernel MemoryEntry

+ KernelTCP MemoryEntry

+ Raw map[string]uint64

+ Swap MemoryEntry

+ Usage MemoryEntry

+ type MemoryEntry struct

+ Failcnt uint64

+ Limit uint64

+ Max uint64

+ Usage uint64

+ type NetworkInterface struct

+ Name string

+ RxBytes uint64

+ RxDropped uint64

+ RxErrors uint64

+ RxPackets uint64

+ TxBytes uint64

+ TxDropped uint64

+ TxErrors uint64

+ TxPackets uint64

+ type Pids struct

+ Current uint64

+ Limit uint64

+ type Stats struct

+ Blkio Blkio

+ CPU Cpu

+ CPUSet CPUSet

+ Hugetlb map[string]Hugetlb

+ IntelRdt IntelRdt

+ Memory Memory

+ NetworkInterfaces []*NetworkInterface

+ Pids Pids

+ type Throttling struct

+ Periods uint64

+ ThrottledPeriods uint64

+ ThrottledTime uint64

May 19, 2021 GO-2022-0452 +5 more

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2023-1627: Opencontainers runc Incorrect Authorization vulnerability in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

May 10, 2021 GO-2022-0452 +5 more

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2022-0914: mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Feb 3, 2021 GO-2022-0452 +5 more

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2022-0914: mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-2491: Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Aug 5, 2020 GO-2022-0452 +4 more

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2022-0914: mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jun 30, 2020 GO-2022-0452 +4 more

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2022-0914: mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jan 22, 2020 GO-2022-0396 +5 more

  GO-2022-0396: devices resource list treated as a blacklist by default in github.com/opencontainers/runc

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2022-0914: mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc

Jan 22, 2020 GO-2021-0085 +8 more

  GO-2021-0085: Authorization bypass in github.com/opencontainers/runc

  GO-2021-0087: Race condition in github.com/opencontainers/runc

  GO-2022-0396: devices resource list treated as a blacklist by default in github.com/opencontainers/runc

  GO-2022-0452: Default inheritable capabilities for linux container should be empty in github.com/opencontainers/runc

  GO-2022-0835: Information Exposure in RunC in github.com/opencontainers/runc

  GO-2022-0914: mount destinations can be swapped via symlink-exchange to cause mounts outside the rootfs in github.com/opencontainers/runc

  GO-2023-1682: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared in runc in github.com/opencontainers/runc

  GO-2023-1683: runc AppArmor bypass with symlinked /proc in github.com/opencontainers/runc

  GO-2024-3110: runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc