A denial of service exists in Gvisor Sandbox where a bug in reference counting code in mount point tracking could lead to a panic, making it possible for an attacker running as root and with permission to mount volumes to kill the sandbox. We recommend upgrading past commit 6a112c60a257dadac59962e0bc9e9b5aee70b5b6
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Google
Published: 2024-05-15T16:29:08.574Z
Updated: 2024-08-02T08:57:35.072Z
Reserved: 2024-05-02T11:47:43.153Z
Link: CVE-2023-7258
Vulnrichment
Updated: 2024-08-02T08:57:35.072Z
NVD
Status : Awaiting Analysis
Published: 2024-05-15T17:15:09.987
Modified: 2024-05-15T18:35:11.453
Link: CVE-2023-7258
Redhat
No data.