runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| github.com/opencontainers/runc(Go) | 0 | 1.0.0-rc95 | N/A |
CVSS Metrics
