7.Locks HexConnections

Several important security issues were identified in the runC Open Container Project. It was discovered that runC incorrectly performed access control when mounting /proc to non-directories (CVE-2023-27561), and incorrectly handled /proc and /sys mounts inside a container (CVE-2023-28642).

These bugs could possibly allow an attacker to escalate privileges or bypass AppArmor, and potentially SELinux.

A runC security update that fixes these flaws has been released. We strongly recommend that all impacted users apply the runC updates issued by their distro(s) as soon as possible to protect the confidentiality, integrity and availability of their systems.

To stay on top of important updates released by the open-source programs and applications you use, be sure to register as a LinuxSecurity user, then subscribe to our Linux Advisory Watch newsletter and customize your advisories for the distro(s) you use. This will enable you to stay up-to-date on the latest, most significant issues impacting the security of your systems.

Follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s).