runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting /dev/pts/$n to /dev/console inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of /dev/pts/$n to /dev/console as configured for all containers that allocate a console). This happens after pivot_root(2), so this cannot be used to write to host files directly – however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of /proc/sysrq-trigger or /proc/sys/kernel/core_pattern (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.
The product, when opening a file or directory, does not sufficiently account for when the file is a symbolic link that resolves to a target outside of the intended control sphere. This could allow an attacker to cause the product to operate on unauthorized files.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Runc | Linuxfoundation | 1.0.1 (including) | 1.2.8 (excluding) |
| Runc | Linuxfoundation | 1.3.0 (including) | 1.3.3 (excluding) |
| Runc | Linuxfoundation | 1.0.0-rc3 (including) | 1.0.0-rc3 (including) |
| Runc | Linuxfoundation | 1.0.0-rc4 (including) | 1.0.0-rc4 (including) |
| Runc | Linuxfoundation | 1.0.0-rc5 (including) | 1.0.0-rc5 (including) |
| Runc | Linuxfoundation | 1.0.0-rc6 (including) | 1.0.0-rc6 (including) |
| Runc | Linuxfoundation | 1.0.0-rc7 (including) | 1.0.0-rc7 (including) |
| Runc | Linuxfoundation | 1.0.0-rc8 (including) | 1.0.0-rc8 (including) |
| Runc | Linuxfoundation | 1.0.0-rc9 (including) | 1.0.0-rc9 (including) |
| Runc | Linuxfoundation | 1.0.0-rc90 (including) | 1.0.0-rc90 (including) |
| Runc | Linuxfoundation | 1.0.0-rc91 (including) | 1.0.0-rc91 (including) |
| Runc | Linuxfoundation | 1.0.0-rc92 (including) | 1.0.0-rc92 (including) |
| Runc | Linuxfoundation | 1.0.0-rc93 (including) | 1.0.0-rc93 (including) |
| Runc | Linuxfoundation | 1.0.0-rc94 (including) | 1.0.0-rc94 (including) |
| Runc | Linuxfoundation | 1.0.0-rc95 (including) | 1.0.0-rc95 (including) |
| Runc | Linuxfoundation | 1.4.0-rc1 (including) | 1.4.0-rc1 (including) |
| Runc | Linuxfoundation | 1.4.0-rc2 (including) | 1.4.0-rc2 (including) |
| Red Hat Enterprise Linux 8 | RedHat | container-tools:rhel8-8100020251112161627.afee755d | * |
| Red Hat Enterprise Linux 9 | RedHat | runc-4:1.2.5-3.el9_6 | * |
| Red Hat Enterprise Linux 9 | RedHat | runc-4:1.3.0-4.el9_7 | * |
| Red Hat OpenShift Container Platform 4 | RedHat | containernetworking-plugins | * |
| Red Hat OpenShift Container Platform 4 | RedHat | cri-o | * |
| Red Hat OpenShift Container Platform 4 | RedHat | cri-tools | * |
| Red Hat OpenShift Container Platform 4 | RedHat | kernel | * |
| Red Hat OpenShift Container Platform 4 | RedHat | kernel-rt | * |
| Red Hat OpenShift Container Platform 4 | RedHat | runc | * |
| Red Hat OpenShift Container Platform 4 | RedHat | skopeo | * |
| Red Hat OpenShift Container Platform 4.13 | RedHat | rhcos-413.92.202511261311-0 | * |
| Red Hat OpenShift Container Platform 4.16 | RedHat | rhcos-416.94.202511191934-0 | * |
| Red Hat OpenShift Container Platform 4.18 | RedHat | rhcos-418.94.202511170715-0 | * |
| Red Hat AI Inference Server 3.2 | RedHat | rhaiis/vllm-cuda-rhel9:sha256:ec961e5acfde5c1ad0a7e0e2c86a0bf56b9bc46357fa124f9db6dff1006076ab | * |
| Red Hat AI Inference Server 3.2 | RedHat | rhaiis/vllm-rocm-rhel9:sha256:7856bdb7ae0d643a7b9362c164d4d4fe3c0c7186f5fff73a7ae9835b3df52e57 | * |
| Red Hat AI Inference Server 3.2 | RedHat | rhaiis/model-opt-cuda-rhel9:sha256:14e32e88f1b89f59ed34a6d712746b82a6a54c6ed4727784f18aeff853abbdc7 | * |
| Red Hat AI Inference Server 3.2 | RedHat | rhaiis/model-opt-cuda-rhel9:sha256:fca12d55fef49b9a67c8aa7c2c004adb8916b9784134b4e571067a615a7a4a2e | * |
| Red Hat AI Inference Server 3.2 | RedHat | rhaiis/vllm-cuda-rhel9:sha256:f0ab1b678e9447eae4b6b2fe5c58531aa8524133db157f196726164e4dc20492 | * |
| Red Hat AI Inference Server 3.2 | RedHat | rhaiis/vllm-rocm-rhel9:sha256:e3b3efcdd86f60b90664a249d45918b2ac5f45bae5eed5399e310d63e878b287 | * |
| Red Hat AI Inference Server 3.2 | RedHat | rhaiis/vllm-tpu-rhel9:sha256:64796b48c68d31973a08e22c9530c39b1bc3ba9f376bbefa57643ef0fc857534 | * |
| Red Hat AI Inference Server 3.2 | RedHat | rhaiis/vllm-rocm-rhel9:sha256:c5efe40fa2a6e98d7d3d6676befff0dbbd87b2887769bb7e5856c5b0b0ada125 | * |
| Runc | Ubuntu | esm-apps/bionic | * |
| Runc | Ubuntu | esm-apps/noble | * |
| Runc | Ubuntu | esm-apps/xenial | * |
| Runc | Ubuntu | esm-infra/focal | * |
| Runc | Ubuntu | jammy | * |
| Runc | Ubuntu | noble | * |
| Runc | Ubuntu | plucky | * |
| Runc | Ubuntu | questing | * |
| Runc | Ubuntu | upstream | * |
| Runc-app | Ubuntu | devel | * |
| Runc-app | Ubuntu | esm-apps/focal | * |
| Runc-app | Ubuntu | esm-apps/jammy | * |
| Runc-app | Ubuntu | jammy | * |
| Runc-app | Ubuntu | noble | * |
| Runc-app | Ubuntu | plucky | * |
| Runc-app | Ubuntu | questing | * |
| Runc-app | Ubuntu | upstream | * |
| Runc-stable | Ubuntu | devel | * |
| Runc-stable | Ubuntu | questing | * |
| Runc-stable | Ubuntu | upstream | * |