GO-2024-3110
See a problem?- Source
- https://pkg.go.dev/vuln/GO-2024-3110
- Import Source
- https://vuln.go.dev/ID/GO-2024-3110.json
- JSON Data
- https://api.osv.dev/v1/vulns/GO-2024-3110
- Aliases
- Published
- 2024-09-06T20:43:50Z
- Modified
- 2024-09-06T21:12:10.119746Z
- Summary
- runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc
- Details
-
runc can be confused to create empty files/directories on the host in github.com/opencontainers/runc
- References
-
- https://github.com/opencontainers/runc/security/advisories/GHSA-jfvp-7x6p-h2pv
- https://nvd.nist.gov/vuln/detail/CVE-2024-45310
- https://github.com/opencontainers/runc/commit/63c2908164f3a1daea455bf5bcd8d363d70328c7
- https://github.com/opencontainers/runc/commit/8781993968fd964ac723ff5f360b6f259e809a3e
- https://github.com/opencontainers/runc/commit/f0b652ea61ff6750a8fcc69865d45a7abf37accf
- https://github.com/opencontainers/runc/pull/4359
Affected packages
Go / github.com/opencontainers/runc
Package
- Name
- github.com/opencontainers/runc
- View open source insights on deps.dev
- Purl
- pkg:golang/github.com/opencontainers/runc