Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc
{ "review_status": "REVIEWED", "url": "https://pkg.go.dev/vuln/GO-2024-2491" }
{ "imports": [ { "path": "github.com/opencontainers/runc/libcontainer/utils", "symbols": [ "CloseExecFrom" ] }, { "path": "github.com/opencontainers/runc/libcontainer/cgroups", "symbols": [ "openFile", "prepareOpenat2" ] }, { "path": "github.com/opencontainers/runc/libcontainer", "symbols": [ "Container.start", "Init", "finalizeNamespace", "linuxSetnsInit.Init", "linuxStandardInit.Init" ] } ] }