RLSA-2025:21232

Описание

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.

Security Fix(es):

• runc: container escape via 'masked path' abuse due to mount race conditions (CVE-2025-31133)

• runc: container escape with malicious config due to /dev/console mount and related races (CVE-2025-52565)

• runc: container escape and denial of service due to arbitrary write gadgets and procfs write redirects (CVE-2025-52881)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.