| id: GO-2022-0835 |
| modules: |
| - module: github.com/opencontainers/runc |
| versions: |
| - fixed: 1.0.0-rc3 |
| vulnerable_at: 1.0.0-rc2 |
| summary: Information Exposure in RunC in github.com/opencontainers/runc |
| cves: |
| - CVE-2016-9962 |
| ghsas: |
| - GHSA-gp4j-w3vj-7299 |
| references: |
| - advisory: https://github.com/advisories/GHSA-gp4j-w3vj-7299 |
| - advisory: https://nvd.nist.gov/vuln/detail/CVE-2016-9962 |
| - fix: https://github.com/opencontainers/runc/commit/50a19c6ff828c58e5dab13830bd3dacde268afe5 |
| - fix: https://github.com/opencontainers/runc/commit/5d93fed3d27f1e2bab58bad13b180a7a81d0b378 |
| - web: http://rhn.redhat.com/errata/RHSA-2017-0116.html |
| - web: http://rhn.redhat.com/errata/RHSA-2017-0123.html |
| - web: http://rhn.redhat.com/errata/RHSA-2017-0127.html |
| - web: http://seclists.org/fulldisclosure/2017/Jan/21 |
| - web: http://seclists.org/fulldisclosure/2017/Jan/29 |
| - web: https://access.redhat.com/security/vulnerabilities/cve-2016-9962 |
| - web: https://bugzilla.suse.com/show_bug.cgi?id=1012568#c6 |
| - web: https://github.com/docker/docker/releases/tag/v1.12.6 |
| - web: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BQAXJMMLRU7DD2IMG47SR2K4BOFFG7FZ |
| - web: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FINGBFMIXBG6B6ZWYH3TMRP5V3PDBNXR |
| - web: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UVM7FCOQMPKOFLDTUYSS4ES76DDM56VP |
| - web: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WUQ3MQNEL5IBZZLMLR72Q4YDCL2SCKRK |
| - web: https://security.gentoo.org/glsa/201701-34 |
| - web: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9962 |
| source: |
| id: GHSA-gp4j-w3vj-7299 |
| created: 2024-08-20T14:20:53.903219-04:00 |
| review_status: UNREVIEWED |
| unexcluded: NOT_IMPORTABLE |
