RunC Flaws Enable Container Escapes, Granting Attackers Host Access

Critical vulnerabilities in the runC command-line tool noted as CVE-2024-21626, CVE-2024-23651, CVE-2024-23652, and CVE-2024-23653, have been identified recently. These security flaws, collectively known as the “Leaky Vessels”, were discovered by the cybersecurity vendor, Snyk. These vulnerabilities could potentially be manipulated by attackers to break free from the container confines and launch subsequent attacks. These runC flaws enable container escapes, granting host access to possible threat actors. Current measures against such security threats are still being researched and tested to prevent further exploits.

Published: Thu, 01 Feb 2024 01:30:00 +0530