CVE-2019-16884

runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.

References

Affected packages

Git / github.com/docker/docker

Affected ranges

Type

GIT

Repo

https://github.com/docker/docker

Events

Introduced

Last affected

8293a0d53350b9ebb584988efe3096c313a13ad4

Introduced

Last affected

ed20165a37b40ff1cfbe55e218344c5e89f30ee2

Introduced

Last affected

63df8cf4b5d6473291eaf499107825c41af3b5e4

Database specific

{
    "versions": [
        {
            "introduced": "0.0.1"
        },
        {
            "last_affected": "0.1.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "19.03.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "18.04"
        }
    ]
}

Type

GIT

Repo

https://github.com/opencontainers/runc

Events

Introduced

Last affected

04f275d4601ca7e5ff9460cec7f65e8dd15443ec

Introduced

Last affected

c91b5bea4830a57eac7882d7455d59518cdf70ec

Introduced

Last affected

75f8da7c889acc4509a0cf6f0d3a8f9584778375

Introduced

Last affected

2e7cfe036e2c6dc51ccca6eb7fa3ee6b63976dcd

Introduced

Last affected

4fc53a81fb7c994640722ac585fa9ca548971871

Introduced

Last affected

ccb5efd37fb7c86364786e9137e22948751de7ed

Introduced

Last affected

69ae5da6afdcaaf38285a10b36f362e41cb298d6

Introduced

Last affected

425e105d5a03fabd737a126ad93d62a9eeede87f

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.0-rc1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.0-rc2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.0-rc3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.0-rc4"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.0-rc5"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.0-rc6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.0-rc7"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.0-rc8"
        }
    ]
}

Affected versions

0.*

0.0.3

upstream/0.*

upstream/0.1.1

upstream/0.1.2

upstream/0.1.3

upstream/0.1.4

v0.*

v0.0.1

v0.0.2

v0.0.3

v0.0.4

v0.0.5

v0.0.6

v0.0.7

v0.0.8

v0.0.9

v0.1.0

v0.1.1

v1.*

v1.0.0-rc1

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "29"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "30"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "31"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "15.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "15.1"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "4.1"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "4.2"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "8.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "8.1"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "8.2"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "8.4"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "8.2"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "8.4"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "8.2"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "8.4"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "19.10"
            }
        ]
    }
]

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-16884.json"