CVE-2021-30465 - log back

CVE-2021-30465 edited at 25 May 2021 17:55:22
Notes
+ Workaround
+ ==========
+
+ Container hardening mechanisms such as LSMs (AppArmor/SELinux) and user namespaces can restrict the amount of damage an attacker could do but they do not block this attack outright.
CVE-2021-30465 edited at 25 May 2021 17:53:51
Description
+ runc 1.0.0-rc94 and earlier are vulnerable to a symlink exchange attack where an attacker with the ability to start containers using a custom volume configuration can request a seemingly-innocuous container configuration that results in the host filesystem being bind-mounted into the container (allowing for a container escape).
- runc 1.0.0-rc94 and earlier are vulnerable to a symlink exchange attack whereby an attacker can request a seemingly-innocuous container configuration that actually results in the host filesystem being bind-mounted into the container (allowing for a container escape).
-
- An attacker must have the ability to start containers using some kind of custom volume configuration, and while recommended container hardening mechanisms such as LSMs (AppArmor/SELinux) and user namespaces will restrict the amount of damage an attacker could do, they do not block this attack outright.
-
- runc 1.0.0-rc95 contains a fix for this issue.
CVE-2021-30465 edited at 19 May 2021 11:32:58
Severity
- Unknown
+ High
Remote
- Unknown
+ Local
Type
- Unknown
+ Sandbox escape
Description
+ runc 1.0.0-rc94 and earlier are vulnerable to a symlink exchange attack whereby an attacker can request a seemingly-innocuous container configuration that actually results in the host filesystem being bind-mounted into the container (allowing for a container escape).
+
+ An attacker must have the ability to start containers using some kind of custom volume configuration, and while recommended container hardening mechanisms such as LSMs (AppArmor/SELinux) and user namespaces will restrict the amount of damage an attacker could do, they do not block this attack outright.
+
+ runc 1.0.0-rc95 contains a fix for this issue.
References
+ https://github.com/opencontainers/runc/security/advisories/GHSA-c3xm-pvg7-gh7r
+ https://github.com/opencontainers/runc/commit/0ca91f44f1664da834bc61115a849b56d22f595f
Notes
CVE-2021-30465 created at 19 May 2021 11:29:02