Wind River Support Network

HomeDefectsLIN1019-2825
Fixed

LIN1019-2825 : Security Advisory - runc-docker - CVE-2019-16884

Created: Oct 7, 2019    Updated: May 16, 2023
Resolved Date: May 16, 2023
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description


runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.

CREATE(Triage):(User=admin) CVE-2019-16884

CVEs


Live chat
Online