Member-only story
RHSB-2024–001 Leaky Vessels — runc — (CVE-2024–21626)
Unpacking CVE-2024–21626: A Deep Dive into Container Security
Introduction
Red Hat has identified a critical vulnerability in runc, a key component of container infrastructure, which facilitates container escapes, potentially allowing attackers unauthorized access to the host operating system from within a container. Exploitation methods include deceiving users into using or constructing a malicious image, or executing a malevolent process within the container with runc exec. This vulnerability, designated CVE-2024-21626, has been classified with an important severity impact.
Affected Red Hat products include:
- Red Hat OpenShift Container Platform versions 4 and 3.11
- Red Hat Enterprise Linux versions 7, 8, and 9
- Additional products running on Red Hat Enterprise Linux and RHEL CoreOS
Notably, this issue also extends to product containers based on RHEL or UBI container images and product drawing packages from the RHEL channel.
Related vulnerabilities, CVE-2024–23651, CVE-2024–23652, and CVE-2024–23653, found in moby buildkit, are under investigation.
