CVE-2024-21626 - runc - Githubissues

docker-library / docker

Docker Official Image packaging for Docker

Apache License 2.0

1.09k stars 568 forks source link

Closed 1stNox closed 5 months ago

1stNox commented 5 months ago

Upgrade runc to 1.1.12 or greater please. Otherwise the vulnerability CVE-2024-21626 is injected although it could be eliminated.

yosifkit commented 5 months ago

These fixes were already applied in Docker 25.0.2 (https://github.com/moby/moby/releases/tag/v25.0.2). The image is currently 25.0.3.

(And in 24.0.9 which we also have)