{"id":"MGASA-2019-0068","summary":"Updated opencontainers-runc packages fix security vulnerability","details":"Not using pivot_root(2) leaves the host /proc around in the mount namespace\nso that it is possible to mount another /proc without any other submount,\neven if /proc in the container is not fully visible. This flaw allows an\nattacker to read and modify some parts of the Linux kernel memory\n(rhbz#1663068).\n\nrunc through 1.0-rc6 allows attackers to overwrite the host runc binary\n(and consequently obtain host root access) by leveraging the ability to\nexecute a command as root within one of these types of containers: a new\ncontainer with an attacker-controlled image, or an existing container, to\nwhich the attacker previously had write access, that can be attached with\ndocker exec. This occurs because of file-descriptor mishandling, related\nto /proc/self/exe (CVE-2019-5736).\n","modified":"2026-04-16T00:11:23.318857482Z","published":"2019-02-13T11:08:25Z","upstream":["CVE-2019-5736"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2019-0068.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=24253"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/SMFQ54VEZPJT4H2C2TBILCPDX2VMAIZ2/"},{"type":"WEB","url":"https://www.openwall.com/lists/oss-security/2019/02/11/2"}],"affected":[{"package":{"name":"opencontainers-runc","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/opencontainers-runc?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.0.0rc5-3.2.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0068.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}