VDB
AZL-43789
AZL-43789
PUBLISHED
CVSS 8.600000381469727 HIGH
CVE-2024-21626 affecting package buildah 1.18.0-29
Risk Scores
CVSS 3.1
8.600000381469727
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Azure Linux:2 | buildah | 0 |
Exploit Intelligence
- PoC for CVE-2024-21626: runc leaks an internal fd referencing the host CWD before pivot_root, enabling container escape by setting process.cwd to /proc/self/fd/7 (github-poc-repo)
- PoC for CVE-2024-21626: runc leaks an internal fd referencing the host CWD before pivot_root, enabling container escape by setting process.cwd to /proc/self/fd/7 (github-poc)
- PoC for CVE-2024-21626: runc leaks an internal fd referencing the host CWD before pivot_root, enabling container escape by setting process.cwd to /proc/self/fd/7 (github-poc-repo)
- PoC for CVE-2024-21626: runc leaks an internal fd referencing the host CWD before pivot_root, enabling container escape by setting process.cwd to /proc/self/fd/7 (github-poc)
- POC (github-poc-repo)
- Root cuase & Proof Of Code (github-poc-repo)
- PoC for CVE-2024-21626: runc leaks an internal fd referencing the host CWD before pivot_root, enabling container escape by setting process.cwd to /proc/self/fd/7 (github-poc-repo)
- POCs and Tetragon Rules for CVE-2024-21626 and CVE-2025-31133 (github-poc-repo)
- PoC for CVE-2024-21626: runc leaks an internal fd referencing the host CWD before pivot_root, enabling container escape by setting process.cwd to /proc/self/fd/7 (github-poc)
- POCs and Tetragon Rules for CVE-2024-21626 and CVE-2025-31133 (github-poc)
…and 31 more exploits
Timeline
- Jan 31, 2024 CVE Published
- Apr 21, 2026 CVE Updated