PT-2025-45375 · Runc+10 · Runc+10

Published

2025-11-04

·

Updated

2026-04-30

·

CVE-2025-52881

CVSS v3.1

7.5

High

VectorAV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions runc version 1.2.7 runc version 1.3.2 runc version 1.4.0-rc.2
Description runc is a CLI tool for spawning and running containers according to the OCI specification. A race condition exists that allows an attacker to trick the tool into misdirecting writes to /proc to other procfs files. This is achieved by using a racing container with shared mounts, which can be triggered via symbolic links in a tmpfs or regular bind-mounts. This attack is also possible using a standard Dockerfile with docker buildx build as it permits parallel execution of containers with custom shared mounts. Exploitation of this issue can impact the confidentiality, integrity, and availability of protected information.
Recommendations Update runc version 1.2.7 to 1.2.8. Update runc version 1.3.2 to 1.3.3. Update runc version 1.4.0-rc.2 to 1.4.0-rc.3.

Exploit

Fix

DoS

Weakness Enumeration

CWE-363CWE-61

Related Identifiers

ALSA-2025:19927
ALSA-2025:20957
ALSA-2025:21220
ALSA-2025:21232
ALSA-2025:21702
ALSA-2025:22011
ALSA-2025:22012
ALSA-2025:23543
AZL-69824
AZL-69826
AZL-70586
BDU:2025-14040
CESA-2025_21232
CVE-2025-52881
ECHO-4E92-DCC8-ABDF
GHSA-9493-H29P-RFM2
GHSA-CGRX-MC8F-2PRM
GHSA-QW9X-CQR3-WC7R
GO-2025-4098
INFSA-2025_19927
INFSA-2025_20957
INFSA-2025_21232
INFSA-2025_21702
INFSA-2025_22011
MGASA-2025-0271
OPENSUSE-SU-2025:15705-1
OPENSUSE-SU-2025:15721-1
OPENSUSE-SU-2025:15843-1
OPENSUSE-SU-2025:15845-1
OPENSUSE-SU-2025:20072-1
OPENSUSE-SU-2026:20072-1
OPENSUSE-SU-2026:20080-1
OPENSUSE-SU-2026:20140-1
OPENSUSE-SU-2026:20305-1
RHSA-2025:19927
RHSA-2025:20957
RHSA-2025:21220
RHSA-2025:21232
RHSA-2025:21328
RHSA-2025:21633
RHSA-2025:21634
RHSA-2025:21702
RHSA-2025:22011
RHSA-2025:22012
RHSA-2025:22030
RHSA-2025:23347
RHSA-2025:23543
RHSA-2025_19927
RHSA-2025_20957
RHSA-2025_21232
RHSA-2025_21702
RHSA-2025_22011
RHSA-2026:0315
RHSA-2026:0331
RHSA-2026:0418
RHSA-2026:0424
RHSA-2026:0425
RHSA-2026:0426
RHSA-2026:0676
RHSA-2026:0701
RHSA-2026:0995
RHSA-2026:10703
RHSA-2026:1540
RHSA-2026:2975
RHSA-2026:3391
RHSA-2026:3416
RHSA-2026:4531
RHSA-2026:4532
RHSA-2026:4533
RHSA-2026:4693
RHSA-2026:8325
SUSE-SU-2025:21036-1
SUSE-SU-2025:21038-1
SUSE-SU-2025:21054-1
SUSE-SU-2025:21072-1
SUSE-SU-2025:21136-1
SUSE-SU-2025:3950-1
SUSE-SU-2025:3951-1
SUSE-SU-2025:4073-1
SUSE-SU-2025:4073-2
SUSE-SU-2025:4074-1
SUSE-SU-2025:4075-1
SUSE-SU-2025:4076-1
SUSE-SU-2025:4077-1
SUSE-SU-2025:4079-1
SUSE-SU-2025:4080-1
SUSE-SU-2025:4081-1
SUSE-SU-2025_4074-1
SUSE-SU-2025_4075-1
SUSE-SU-2025_4076-1
SUSE-SU-2026:0327-1
SUSE-SU-2026:20103-1
SUSE-SU-2026:20116-1
SUSE-SU-2026:20123-1
SUSE-SU-2026:20214-1
SUSE-SU-2026:20626-1
SUSE-SU-2026:20641-1
SUSE-SU-2026:21291-1
USN-7851-1
USN-7851-2

Affected Products

Alt Linux
Almalinux
Centos
Debian
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Runc