csaf_suse - suse-su-2025:4080-1

suse-su-2025:4080-1

Vulnerability from csaf_suse

Published

2025-11-12 12:49

Modified

2025-11-12 12:49

Summary

Security update for podman

Notes

Title of the patch

Security update for podman

Description of the patch

This update for podman fixes the following issues: - CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions (bsc#1252376) - CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252376) - CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252376) Other fixes: - Fix: podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543) - Add symlink to catatonit in /usr/libexec/podman (bsc#1248988)

Patchnames

SUSE-2025-4080,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-4080,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-4080,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-4080,SUSE-SUSE-MicroOS-5.1-2025-4080,SUSE-SUSE-MicroOS-5.2-2025-4080,SUSE-Storage-7.1-2025-4080

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for podman",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for podman fixes the following issues:\n\n- CVE-2025-31133: Fixed container escape via \u0027masked path\u0027 abuse due to mount race conditions (bsc#1252376)\n- CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races (bsc#1252376)\n- CVE-2025-52881: Fixed container escape and denial of service due to arbitrary write gadgets and procfs write redirects (bsc#1252376)\n    \nOther fixes:\n    \n- Fix: podman and buildah with runc 1.3.2 fail with lots of warnings as rootless (bsc#1252543)\n- Add symlink to catatonit in /usr/libexec/podman (bsc#1248988)\n\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2025-4080,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-4080,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-4080,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-4080,SUSE-SUSE-MicroOS-5.1-2025-4080,SUSE-SUSE-MicroOS-5.2-2025-4080,SUSE-Storage-7.1-2025-4080",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_4080-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2025:4080-1",
        "url": "https://www.suse.com/support/update/announcement/2025/suse-su-20254080-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2025:4080-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023272.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1248988",
        "url": "https://bugzilla.suse.com/1248988"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1252376",
        "url": "https://bugzilla.suse.com/1252376"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1252543",
        "url": "https://bugzilla.suse.com/1252543"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-31133 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-31133/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-52565 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-52565/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-52881 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-52881/"
      }
    ],
    "title": "Security update for podman",
    "tracking": {
      "current_release_date": "2025-11-12T12:49:06Z",
      "generator": {
        "date": "2025-11-12T12:49:06Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2025:4080-1",
      "initial_release_date": "2025-11-12T12:49:06Z",
      "revision_history": [
        {
          "date": "2025-11-12T12:49:06Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "podman-4.9.5-150300.9.63.2.aarch64",
                "product": {
                  "name": "podman-4.9.5-150300.9.63.2.aarch64",
                  "product_id": "podman-4.9.5-150300.9.63.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-4.9.5-150300.9.63.2.aarch64",
                "product": {
                  "name": "podman-remote-4.9.5-150300.9.63.2.aarch64",
                  "product_id": "podman-remote-4.9.5-150300.9.63.2.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "podmansh-4.9.5-150300.9.63.2.aarch64",
                "product": {
                  "name": "podmansh-4.9.5-150300.9.63.2.aarch64",
                  "product_id": "podmansh-4.9.5-150300.9.63.2.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "podman-4.9.5-150300.9.63.2.i586",
                "product": {
                  "name": "podman-4.9.5-150300.9.63.2.i586",
                  "product_id": "podman-4.9.5-150300.9.63.2.i586"
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-4.9.5-150300.9.63.2.i586",
                "product": {
                  "name": "podman-remote-4.9.5-150300.9.63.2.i586",
                  "product_id": "podman-remote-4.9.5-150300.9.63.2.i586"
                }
              },
              {
                "category": "product_version",
                "name": "podmansh-4.9.5-150300.9.63.2.i586",
                "product": {
                  "name": "podmansh-4.9.5-150300.9.63.2.i586",
                  "product_id": "podmansh-4.9.5-150300.9.63.2.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "podman-docker-4.9.5-150300.9.63.2.noarch",
                "product": {
                  "name": "podman-docker-4.9.5-150300.9.63.2.noarch",
                  "product_id": "podman-docker-4.9.5-150300.9.63.2.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "podman-4.9.5-150300.9.63.2.ppc64le",
                "product": {
                  "name": "podman-4.9.5-150300.9.63.2.ppc64le",
                  "product_id": "podman-4.9.5-150300.9.63.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-4.9.5-150300.9.63.2.ppc64le",
                "product": {
                  "name": "podman-remote-4.9.5-150300.9.63.2.ppc64le",
                  "product_id": "podman-remote-4.9.5-150300.9.63.2.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "podmansh-4.9.5-150300.9.63.2.ppc64le",
                "product": {
                  "name": "podmansh-4.9.5-150300.9.63.2.ppc64le",
                  "product_id": "podmansh-4.9.5-150300.9.63.2.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "podman-4.9.5-150300.9.63.2.s390x",
                "product": {
                  "name": "podman-4.9.5-150300.9.63.2.s390x",
                  "product_id": "podman-4.9.5-150300.9.63.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-4.9.5-150300.9.63.2.s390x",
                "product": {
                  "name": "podman-remote-4.9.5-150300.9.63.2.s390x",
                  "product_id": "podman-remote-4.9.5-150300.9.63.2.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "podmansh-4.9.5-150300.9.63.2.s390x",
                "product": {
                  "name": "podmansh-4.9.5-150300.9.63.2.s390x",
                  "product_id": "podmansh-4.9.5-150300.9.63.2.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "podman-4.9.5-150300.9.63.2.x86_64",
                "product": {
                  "name": "podman-4.9.5-150300.9.63.2.x86_64",
                  "product_id": "podman-4.9.5-150300.9.63.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-4.9.5-150300.9.63.2.x86_64",
                "product": {
                  "name": "podman-remote-4.9.5-150300.9.63.2.x86_64",
                  "product_id": "podman-remote-4.9.5-150300.9.63.2.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "podmansh-4.9.5-150300.9.63.2.x86_64",
                "product": {
                  "name": "podmansh-4.9.5-150300.9.63.2.x86_64",
                  "product_id": "podmansh-4.9.5-150300.9.63.2.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP3-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Micro 5.1",
                "product": {
                  "name": "SUSE Linux Enterprise Micro 5.1",
                  "product_id": "SUSE Linux Enterprise Micro 5.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-microos:5.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Micro 5.2",
                "product": {
                  "name": "SUSE Linux Enterprise Micro 5.2",
                  "product_id": "SUSE Linux Enterprise Micro 5.2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-microos:5.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Enterprise Storage 7.1",
                "product": {
                  "name": "SUSE Enterprise Storage 7.1",
                  "product_id": "SUSE Enterprise Storage 7.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:ses:7.1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP3-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP3-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP3",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
          "product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Micro 5.1",
          "product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
          "product_id": "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Micro 5.1",
          "product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Micro 5.1",
          "product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Micro 5.1",
          "product_id": "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
          "product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Micro 5.2",
          "product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
          "product_id": "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.aarch64 as component of SUSE Linux Enterprise Micro 5.2",
          "product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.s390x as component of SUSE Linux Enterprise Micro 5.2",
          "product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Linux Enterprise Micro 5.2",
          "product_id": "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Micro 5.2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.aarch64 as component of SUSE Enterprise Storage 7.1",
          "product_id": "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-4.9.5-150300.9.63.2.x86_64 as component of SUSE Enterprise Storage 7.1",
          "product_id": "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.aarch64 as component of SUSE Enterprise Storage 7.1",
          "product_id": "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-4.9.5-150300.9.63.2.x86_64 as component of SUSE Enterprise Storage 7.1",
          "product_id": "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64"
        },
        "product_reference": "podman-remote-4.9.5-150300.9.63.2.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7.1"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-31133",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-31133"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack:  an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-31133",
          "url": "https://www.suse.com/security/cve/CVE-2025-31133"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1252232 for CVE-2025-31133",
          "url": "https://bugzilla.suse.com/1252232"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-12T12:49:06Z",
          "details": "important"
        }
      ],
      "title": "CVE-2025-31133"
    },
    {
      "cve": "CVE-2025-52565",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-52565"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-52565",
          "url": "https://www.suse.com/security/cve/CVE-2025-52565"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1252232 for CVE-2025-52565",
          "url": "https://bugzilla.suse.com/1252232"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-12T12:49:06Z",
          "details": "important"
        }
      ],
      "title": "CVE-2025-52565"
    },
    {
      "cve": "CVE-2025-52881",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-52881"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
          "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-52881",
          "url": "https://www.suse.com/security/cve/CVE-2025-52881"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1252232 for CVE-2025-52881",
          "url": "https://bugzilla.suse.com/1252232"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Enterprise Storage 7.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.1:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Micro 5.2:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.aarch64",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.s390x",
            "SUSE Linux Enterprise Server 15 SP3-LTSS:podman-remote-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-4.9.5-150300.9.63.2.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP3:podman-remote-4.9.5-150300.9.63.2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-11-12T12:49:06Z",
          "details": "important"
        }
      ],
      "title": "CVE-2025-52881"
    }
  ]
}

CVE-2025-52565 (GCVE-0-2025-52565)

Vulnerability from cvelistv5

Published

2025-11-06 20:02

Modified

2025-11-06 21:32

Severity ?

8.4 (High) - CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H

CWE

CWE-61 - UNIX Symbolic Link (Symlink) Following
CWE-363 - Race Condition Enabling Link Following

Summary

runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.

References

URL

Tags

	https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r	x_refsource_CONFIRM
	https://github.com/opencontainers/runc/commit/01de9d65dc72f67b256ef03f9bfb795a2bf143b4	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/398955bccb7f20565c224a3064d331c19e422398	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/531ef794e4ecd628006a865ad334a048ee2b4b2e	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/9be1dbf4ac67d9840a043ebd2df5c68f36705d1d	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/aee7d3fe355dd02939d44155e308ea0052e0d53a	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/de87203e625cd7a27141fb5f2ad00a320c69c5e8	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	opencontainers	runc	Version: >= 1.0.0-rc3, < 1.2.8 Version: >= 1.3.0-rc.1, < 1.3.3 Version: >= 1.4.0-rc.1, < 1.4.0-rc.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-52565",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-11-06T21:32:07.457681Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-11-06T21:32:19.129Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "runc",
          "vendor": "opencontainers",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 1.0.0-rc3, \u003c 1.2.8"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.3.0-rc.1, \u003c 1.3.3"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.4.0-rc.1, \u003c 1.4.0-rc.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "runc is a CLI tool for spawning and running containers according to the OCI specification. Versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, due to insufficient checks when bind-mounting `/dev/pts/$n` to `/dev/console` inside the container, an attacker can trick runc into bind-mounting paths which would normally be made read-only or be masked onto a path that the attacker can write to. This attack is very similar in concept and application to CVE-2025-31133, except that it attacks a similar vulnerability in a different target (namely, the bind-mount of `/dev/pts/$n` to `/dev/console` as configured for all containers that allocate a console). This happens after `pivot_root(2)`, so this cannot be used to write to host files directly -- however, as with CVE-2025-31133, this can load to denial of service of the host or a container breakout by providing the attacker with a writable copy of `/proc/sysrq-trigger` or `/proc/sys/kernel/core_pattern` (respectively). This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "privilegesRequired": "NONE",
            "subAvailabilityImpact": "HIGH",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "HIGH",
            "userInteraction": "PASSIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:H/SI:H/SA:H",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "NONE",
            "vulnIntegrityImpact": "HIGH"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-61",
              "description": "CWE-61: UNIX Symbolic Link (Symlink) Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-363",
              "description": "CWE-363: Race Condition Enabling Link Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-06T20:02:58.513Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/01de9d65dc72f67b256ef03f9bfb795a2bf143b4",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/01de9d65dc72f67b256ef03f9bfb795a2bf143b4"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/398955bccb7f20565c224a3064d331c19e422398",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/398955bccb7f20565c224a3064d331c19e422398"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/531ef794e4ecd628006a865ad334a048ee2b4b2e",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/531ef794e4ecd628006a865ad334a048ee2b4b2e"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/9be1dbf4ac67d9840a043ebd2df5c68f36705d1d",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/9be1dbf4ac67d9840a043ebd2df5c68f36705d1d"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/aee7d3fe355dd02939d44155e308ea0052e0d53a",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/aee7d3fe355dd02939d44155e308ea0052e0d53a"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/de87203e625cd7a27141fb5f2ad00a320c69c5e8",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/de87203e625cd7a27141fb5f2ad00a320c69c5e8"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480"
        }
      ],
      "source": {
        "advisory": "GHSA-qw9x-cqr3-wc7r",
        "discovery": "UNKNOWN"
      },
      "title": "container escape due to /dev/console mount and related races"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-52565",
    "datePublished": "2025-11-06T20:02:58.513Z",
    "dateReserved": "2025-06-18T03:55:52.036Z",
    "dateUpdated": "2025-11-06T21:32:19.129Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-31133 (GCVE-0-2025-31133)

Vulnerability from cvelistv5

Published

2025-11-06 18:47

Modified

2025-11-06 19:22

Severity ?

7.3 (High) - CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

CWE

CWE-61 - UNIX Symbolic Link (Symlink) Following
CWE-363 - Race Condition Enabling Link Following

Summary

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container's /dev/null) was actually a real /dev/null inode when using the container's /dev/null to mask. This exposes two methods of attack: an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3.

References

URL

Tags

	https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2	x_refsource_CONFIRM
	https://github.com/opencontainers/runc/commit/1a30a8f3d921acbbb6a4bb7e99da2c05f8d48522	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/5d7b2424072449872d1cd0c937f2ca25f418eb66	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/8476df83b534a2522b878c0507b3491def48db9f	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	opencontainers	runc	Version: < 1.2.8 Version: >= 1.3.0-rc.1, < 1.3.3 Version: >= 1.4.0-rc.1, <= 1.4.0-rc.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-31133",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-11-06T19:03:45.356326Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-11-06T19:22:22.047Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "runc",
          "vendor": "opencontainers",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 1.2.8"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.3.0-rc.1, \u003c 1.3.3"
            },
            {
              "status": "affected",
              "version": "\u003e= 1.4.0-rc.1, \u003c= 1.4.0-rc.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount (i.e., the container\u0027s /dev/null) was actually a real /dev/null inode when using the container\u0027s /dev/null to mask. This exposes two methods of attack:  an arbitrary mount gadget, leading to host information disclosure, host denial of service, container escape, or a bypassing of maskedPaths. This issue is fixed in versions 1.2.8, 1.3.3 and 1.4.0-rc.3."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "LOCAL",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "privilegesRequired": "LOW",
            "subAvailabilityImpact": "HIGH",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "HIGH",
            "userInteraction": "ACTIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-61",
              "description": "CWE-61: UNIX Symbolic Link (Symlink) Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-363",
              "description": "CWE-363: Race Condition Enabling Link Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-06T18:47:47.335Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/1a30a8f3d921acbbb6a4bb7e99da2c05f8d48522",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/1a30a8f3d921acbbb6a4bb7e99da2c05f8d48522"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/5d7b2424072449872d1cd0c937f2ca25f418eb66",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/5d7b2424072449872d1cd0c937f2ca25f418eb66"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/8476df83b534a2522b878c0507b3491def48db9f",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/8476df83b534a2522b878c0507b3491def48db9f"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64"
        }
      ],
      "source": {
        "advisory": "GHSA-9493-h29p-rfm2",
        "discovery": "UNKNOWN"
      },
      "title": "runc container escape via \"masked path\" abuse due to mount race conditions"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-31133",
    "datePublished": "2025-11-06T18:47:47.335Z",
    "dateReserved": "2025-03-26T15:04:52.627Z",
    "dateUpdated": "2025-11-06T19:22:22.047Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-52881 (GCVE-0-2025-52881)

Vulnerability from cvelistv5

Published

2025-11-06 20:23

Modified

2025-11-06 21:07

Severity ?

7.3 (High) - CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

CWE

CWE-61 - UNIX Symbolic Link (Symlink) Following
CWE-363 - Race Condition Enabling Link Following

Summary

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3.

References

URL

Tags

	https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm	x_refsource_CONFIRM
	https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r	x_refsource_MISC
	https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d	x_refsource_MISC
	https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557	x_refsource_MISC
	https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md	x_refsource_MISC
	http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322	x_refsource_MISC
	http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	opencontainers	runc	Version: <= 1.2.7, < 1.2.8 Version: <= 1.3.2, < 1.3.3 Version: <= 1.4.0-rc.2, < 1.4.0-rc.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-52881",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-11-06T21:06:59.235416Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-11-06T21:07:09.382Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "runc",
          "vendor": "opencontainers",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c= 1.2.7, \u003c 1.2.8"
            },
            {
              "status": "affected",
              "version": "\u003c= 1.3.2, \u003c 1.3.3"
            },
            {
              "status": "affected",
              "version": "\u003c= 1.4.0-rc.2, \u003c 1.4.0-rc.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts (we have also verified this attack is possible to exploit using a standard Dockerfile with docker buildx build as that also permits triggering parallel execution of containers with custom shared mounts configured). This redirect could be through symbolic links in a tmpfs or theoretically other methods such as regular bind-mounts. While similar, the mitigation applied for the related CVE, CVE-2019-19921, was fairly limited and effectively only caused runc to verify that when LSM labels are written they are actually procfs files. This issue is fixed in versions 1.2.8, 1.3.3, and 1.4.0-rc.3."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "attackComplexity": "LOW",
            "attackRequirements": "PRESENT",
            "attackVector": "LOCAL",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "privilegesRequired": "LOW",
            "subAvailabilityImpact": "HIGH",
            "subConfidentialityImpact": "HIGH",
            "subIntegrityImpact": "HIGH",
            "userInteraction": "ACTIVE",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
            "version": "4.0",
            "vulnAvailabilityImpact": "HIGH",
            "vulnConfidentialityImpact": "HIGH",
            "vulnIntegrityImpact": "HIGH"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-61",
              "description": "CWE-61: UNIX Symbolic Link (Symlink) Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-363",
              "description": "CWE-363: Race Condition Enabling Link Following",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-11-06T20:23:36.237Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm"
        },
        {
          "name": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r"
        },
        {
          "name": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/ff94f9991bd32076c871ef0ad8bc1b763458e480"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/ff6fe1324663538167eca8b3d3eec61e1bd4fa51"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/ed6b1693b8b3ae7eb0250a7e76fc888cdacf98c1"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/db19bbed5348847da433faa9d69e9f90192bfa64"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/d61fd29d854b416feaaf128bf650325cd2182165"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/d40b3439a9614a86e87b81a94c6811ec6fa2d7d2"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/b3dd1bc562ed9996d1a0f249e056c16624046d28"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/77d217c7c3775d8ca5af89e477e81568ef4572db"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/77889b56db939c323d29d1130f28f9aea2edb544"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/6fc191449109ea14bb7d61238f24a33fe08c651f"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/4b37cd93f86e72feac866442988b549b5b7bf3e6"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/44a0fcf685db051c80b8c269812bb177f5802c58"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/435cc81be6b79cdec73b4002c0dae549b2f6ae6d"
        },
        {
          "name": "https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/commit/3f925525b44d247e390e529e772a0dc0c0bc3557"
        },
        {
          "name": "https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/opencontainers/runc/blob/v1.4.0-rc.2/RELEASES.md"
        },
        {
          "name": "http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://github.com/opencontainers/runc/commit/a41366e74080fa9f26a2cd3544e2801449697322"
        },
        {
          "name": "http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://github.com/opencontainers/runc/commit/fdcc9d3cad2f85954a241ccb910a61aaa1ef47f3"
        }
      ],
      "source": {
        "advisory": "GHSA-cgrx-mc8f-2prm",
        "discovery": "UNKNOWN"
      },
      "title": "runc: LSM labels can be bypassed with malicious config using dummy procfs files"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-52881",
    "datePublished": "2025-11-06T20:23:36.237Z",
    "dateReserved": "2025-06-20T17:42:25.708Z",
    "dateUpdated": "2025-11-06T21:07:09.382Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

suse-su-2025:4080-1

Vulnerability from csaf_suse

CVE-2025-52565 (GCVE-0-2025-52565)

Vulnerability from cvelistv5

CVE-2025-31133 (GCVE-0-2025-31133)

Vulnerability from cvelistv5

CVE-2025-52881 (GCVE-0-2025-52881)

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature