{"id":"MGASA-2022-0192","summary":"Updated opencontainers-runc packages fix security vulnerability","details":"A bug was found in runc where runc exec --cap executed processes with\nnon-empty inheritable Linux process capabilities, creating an atypical\nLinux environment and enabling programs with inheritable file capabilities\nto elevate those capabilities to the permitted set during execve(2). This\nbug did not affect the container security sandbox as the inheritable set\nnever contained more capabilities than were included in the container's\nbounding set. (CVE-2022-29162)\n","modified":"2026-04-16T04:42:54.581464939Z","published":"2022-05-21T08:50:18Z","upstream":["CVE-2022-29162"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0192.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=30421"},{"type":"ADVISORY","url":"https://github.com/opencontainers/runc/security/advisories/GHSA-f3fp-gc8g-vw66"},{"type":"WEB","url":"https://www.openwall.com/lists/oss-security/2022/05/12/1"}],"affected":[{"package":{"name":"opencontainers-runc","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/opencontainers-runc?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.1.2-2.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0192.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}