Arbitrary File Read

2019-09-2605:02:30

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.003 Low

EPSS

Percentile

70.8%

JSON

github.com/opencontainers/runc is vulnerable to arbitrary file read. The vulnerability exists as the AppAmor restrictions can be bypassed due to incorrect mount targets check, allowing a malicious Docker image to be mounted over a /proc directory.

CPENameOperatorVersion
github.com/opencontainers/runceqHEAD
github.com/opencontainers/runcle1.0.0-rc8
runceq1.0.0_rc9-r0
runc:bioniceq1.0.0~rc4+dfsg1-6
github.com/opencontainers/runceqHEAD
github.com/opencontainers/runcle1.0.0-rc8
runceq1.0.0_rc9-r0
runc:bioniceq1.0.0~rc4+dfsg1-6

Name	Operator	Version
github.com/opencontainers/runc	eq	HEAD
github.com/opencontainers/runc	le	1.0.0-rc8
runc	eq	1.0.0_rc9-r0
runc:bionic	eq	1.0.0~rc4+dfsg1-6
github.com/opencontainers/runc	eq	HEAD
github.com/opencontainers/runc	le	1.0.0-rc8
runc	eq	1.0.0_rc9-r0
runc:bionic	eq	1.0.0~rc4+dfsg1-6