{"id":"GO-2023-1682","summary":"Rootless: /sys/fs/cgroup is writable when cgroupns isn't unshared in github.com/opencontainers/runc","details":"Rootless: /sys/fs/cgroup is writable when cgroupns isn't unshared in github.com/opencontainers/runc","aliases":["CVE-2023-25809","GHSA-m8cg-xc2p-r3fc"],"modified":"2026-02-04T02:59:23.815900Z","published":"2024-08-20T20:29:17Z","related":["CGA-fmvc-cj26-gg63"],"database_specific":{"review_status":"REVIEWED","url":"https://pkg.go.dev/vuln/GO-2023-1682"},"references":[{"type":"ADVISORY","url":"https://github.com/opencontainers/runc/security/advisories/GHSA-m8cg-xc2p-r3fc"},{"type":"FIX","url":"https://github.com/opencontainers/runc/commit/0d62b950e60f6980b54fe3bafd9a9c608dc1df17"}],"affected":[{"package":{"name":"github.com/opencontainers/runc","ecosystem":"Go","purl":"pkg:golang/github.com/opencontainers/runc"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"1.1.5"}]}],"ecosystem_specific":{},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2023-1682.json"}}],"schema_version":"1.7.3"}