PT-2023-3594 · Apparmor+11 · Apparmor+11

Ssst0N3

·

Publicado

2023-03-25

·

Atualizado

2025-08-08

·

CVE-2023-28642

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions runc versions prior to 1.1.5
Description The issue is related to the incorrect handling of symbolic links before accessing a file, which allows an attacker to access confidential data, compromise its integrity, and cause a denial of service. It was found that AppArmor can be bypassed when /proc inside the container is symlinked with a specific mount configuration.
Recommendations For versions prior to 1.1.5, upgrade to version 1.1.5 or later to fix the issue. As a temporary workaround, consider avoiding the use of untrusted container images until the issue is resolved. Restrict access to the /proc endpoint inside the container to minimize the risk of exploitation.

Exploit

Correção

DoS

Link Following

Improper Preservation of Permissions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-305CWE-59CWE-281

Identificadores relacionados

ALSA-2023:6380
ALSA-2023:6938
ALSA-2023:6939
ALT-PU-2023-1576
ALT-PU-2023-1623
ALT-PU-2023-1647
AZL-25850
BDU:2023-03860
BDU:2023-03869
CESA-2023_6938
CESA-2023_6939
CVE-2023-28642
DLA-3369-1
GHSA-G2J6-57V7-GM8C
GO-2023-1683
MGASA-2023-0125
OESA-2023-1204
OESA-2023-1217
OESA-2023-1218
OESA-2023-1383
OPENSUSE-SU-2024:12826-1
OPENSUSE-SU-2025:15424-1
RHSA-2023:6380
RHSA-2023:6938
RHSA-2023:6939
RHSA-2023_6380
RHSA-2023_6938
RHSA-2023_6939
RHSA-2024:0564
ROSA-SA-2023-2209
SUSE-SU-2023:1726-1
SUSE-SU-2023:2003-1
USN-6088-1
USN-6088-2

Produtos afetados

Alt Linux
Almalinux
Apparmor
Astra Linux
Centos
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Runc