File and Directory Vulnerability in runc Container Runtime by OpenContainers
CVE-2024-45310

3.6LOW

Key Information:

Vendor
Opencontainers
Status
Runc
Vendor
CVE Published:
3 September 2024

Summary

A vulnerability in runc allows an attacker to exploit a race condition when creating empty files or directories in arbitrary locations on the host filesystem by utilizing shared volumes between containers. This affects runc versions 1.1.13 and earlier, as well as 1.2.0-rc2 and earlier. Although this vulnerability does not truncate existing files, it poses a risk if an attacker can start containers with custom volume configurations. The potential to create inodes is somewhat mitigated with user namespaces, limiting the locations to world-writable directories. Implementation of strict LSM policies like SELinux or AppArmor may also help restrict this vulnerability's impact, although their effectiveness varies and has not been exhaustively tested.

Affected Version(s)

runc < 1.1.14 < 1.1.14

runc >= 1.2.0-rc-1, < 1.2.0-rc.3 < 1.2.0-rc-1, 1.2.0-rc.3

References

https://github.com/opencontainers/runc/security/advisorie...
x_refsource_CONFIRM
https://github.com/opencontainers/runc/pull/4359
x_refsource_MISC
https://github.com/opencontainers/runc/commit/63c2908164f...
x_refsource_MISC

CVSS V3.1

Score:
3.6
Severity:
LOW
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

.