/logo.png

Until the Light Takes Us

Illustrate runC Escape Vulnerability CVE-2024-21626

runC, a container runtime component, published version 1.1.12 to fix CVE-2024-21626 at 31, Jan 2024, which leads to escaping from containers. The range of affected versions are >= v1.0.0-rc93, <=1.1.11. For containerd the fixed versions are 1.6.28 and 1.7.13, the range of affected versions are 1.4.7 to 1.6.27 and 1.7.0 to 1.7.12. For Docker the fixed version is 25.0.2. RepdoruceMy environment to repdouce it is: Linux distro: Arch Linux Linux kernel: 6.