runc

runc contains a newly disclosed local container escape and information-disclosure vulnerability (CVE-2025-31133) that abuses runc’s maskedPaths handling by exploiting mount/race conditions around bind-mounting the container’s /dev/null, and operators must treat hosts that run untrusted images or...

runc’s handling of procfs writes contains a dangerous race-and-redirect weakness that allows an attacker to bypass Linux Security Module (LSM) labels by misdirecting writes to fake or otherwise benign procfs files, creating a practical path to disable container confinement and to weaponize...