Container breakout through process.cwd trickery and leaked fds in github.com/opencontainers/runc
{ "review_status": "REVIEWED", "url": "https://pkg.go.dev/vuln/GO-2024-2491" }
{ "imports": [ { "symbols": [ "CloseExecFrom" ], "path": "github.com/opencontainers/runc/libcontainer/utils" }, { "symbols": [ "openFile", "prepareOpenat2" ], "path": "github.com/opencontainers/runc/libcontainer/cgroups" }, { "symbols": [ "Container.start", "Init", "finalizeNamespace", "linuxSetnsInit.Init", "linuxStandardInit.Init" ], "path": "github.com/opencontainers/runc/libcontainer" } ] }