Ssst0N3

**Name of the Vulnerable Software and Affected Versions** runc versions prior to 1.1.5 **Description** The issue is related to the incorrect handling of symbolic links before accessing a file, which allows an attacker to access confidential data, compromise its integrity, and cause a denial of service. It was found that AppArmor can be bypassed when `/proc` inside the container is symlinked with a specific mount configuration. **Recommendations** For versions prior to 1.1.5, upgrade to version 1.1.5 or later to fix the issue. As a temporary workaround, consider avoiding the use of untrusted container images until the issue is resolved. Restrict access to the `/proc` endpoint inside the container to minimize the risk of exploitation.