Package impact

Go / github.com/opencontainers/runc

critical high medium low unknown

0

KEV Has exploit

CVE	Severity	CVSS	Risk	Published	Description	Impact
CVE-2021-30465	high	—	8.0	+162315-12-15 00:00Z	Important: container-tools:3.0 security update	+2
CVE-2025-52881	high	—	8.0	7mo ago	Important: runc security update	+1
CVE-2025-52565	high	—	8.0	7mo ago	Important: runc security update	+1
CVE-2025-31133	high	—	8.0	7mo ago	Important: runc security update	+1
CVE-2024-21626	high	—	8.0	2y ago	Important: container-tools:4.0 security update	+1
CVE-2019-16884	high	—	8.0	4y ago	Important: container-tools:rhel8 security and bug fix update
CVE-2016-3697	high	7.8	7.8	10y ago	libcontainer/user/user.go in runC before 0.1.0, as used in Docker before 1.11.2, improperly treats a numeric UID as a potential username, which allows local users to gain privileges via a numeric use…
CVE-2016-9962	medium	6.4	6.4	9y ago	RunC allowed additional container processes via 'runc exec' to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain access to file-d…	+1
CVE-2023-27561	medium	—	5.5	3y ago	Moderate: container-tools:4.0 security and bug fix update	+1
CVE-2023-28642	medium	—	5.5	3y ago	Moderate: container-tools:rhel8 security and bug fix update	+1
CVE-2023-25809	medium	—	5.5	3y ago	Moderate: container-tools:4.0 security and bug fix update	+1
CVE-2021-43784	medium	—	5.5	3y ago	Moderate: runc security update
CVE-2019-19921	medium	—	5.5	3y ago	Moderate: container-tools:rhel8 security, bug fix, and enhancement update
CVE-2022-29162	medium	—	5.5	4y ago	Moderate: container-tools:4.0 security and bug fix update	+2
CVE-2025-27612	unknown	—	—	1y ago	Libcontainer is affected by capabilities elevation similar to GHSA-f3fp-gc8g-vw66
CVE-2024-45310	unknown	—	—	2y ago	runc is a CLI tool for spawning and running containers according to the OCI specification. runc 1.1.13 and earlier, as well as 1.2.0-rc2 and earlier, can be tricked into creating empty files or direc…