Description
runc is a CLI tool for spawning and running containers according to the OCI specification. In versions prior to 1.3.6, 1.4.0-rc.1, 1.4.0-rc.12, 1.5.0-rc.1, and 1.5.0-rc.1, when setting up the container rootfs, setupPtmx and setupDevSymlinks call os.Remove and os.Symlink with a filepath.Join string which allow an image with /dev as a symlink to trick runc into deleting files called ptmx on the host or creating a hardcoded set of symlinks with specific names and targets in an arbitrary pre-existing host directory. This issue is not exploitable under Docker, because Docker creates a top-level read-only layer that masks any malicious /dev symlink present in the container image — unlike some other Linux container tooling, whose higher-level runtimes built on runc remain exposed to exploitation via a malicious image. This issue has been fixed in versions 1.3.6, 1.4.3 and 1.5.0.
Published: 2026-07-01
Score: 3.3 Low
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A malicious container image that includes a symlink named /dev can trick runc into deleting its local /ptmx file or creating symlinks in arbitrary host directories during root filesystem setup. This flaw allows an attacker to alter or remove critical files on the host, thereby compromising filesystem integrity. The vulnerability stems from insecure file operations using unsafe path joins and is classified under CWE‑61.

Affected Systems

The flaw applies to the opencontainers:runc CLI tool in all releases before 1.3.6, 1.4.0‑rc.1, 1.4.0‑rc.12, and 1.5.0‑rc.1. Updating to runc 1.3.6, 1.4.3, or later 1.5.0 eliminates the issue.

Risk and Exploitability

The CVSS score of 3.3 indicates low severity. EPSS data is unavailable and the vulnerability is not listed in CISA KEV. The attack vector is the inclusion of a malicious /dev symlink in a container image; exploitation requires that runc perform root filesystem setup. While Docker mitigates the flaw by creating a read‑only top‑level layer, runtimes that rely directly on runc remain exposed. Current evidence suggests that the risk to most users is modest but non‑zero, particularly in environments where untrusted images are run with runc or where the container runtime does not impose strict layer restrictions.

Generated by OpenCVE AI on July 1, 2026 at 03:08 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade runc to version 1.3.6 or newer (including 1.4.3 and 1.5.0).
  • If an upgrade is not possible, scan container images for a /dev symlink and remove or neutralize it before deployment.
  • Configure the container runtime to enforce host‑filesystem isolation, such as using a Docker‑like read‑only top layer or disabling symlink creation to /dev paths.

Generated by OpenCVE AI on July 1, 2026 at 03:08 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-xjvp-4fhw-gc47 runc: Malicious image with /dev symlink can trigger limited host filesystem integrity violations
History

Wed, 01 Jul 2026 01:30:00 +0000

Type Values Removed Values Added
Description runc is a CLI tool for spawning and running containers according to the OCI specification. In versions prior to 1.3.6, 1.4.0-rc.1, 1.4.0-rc.12, 1.5.0-rc.1, and 1.5.0-rc.1, when setting up the container rootfs, setupPtmx and setupDevSymlinks call os.Remove and os.Symlink with a filepath.Join string which allow an image with /dev as a symlink to trick runc into deleting files called ptmx on the host or creating a hardcoded set of symlinks with specific names and targets in an arbitrary pre-existing host directory. This issue is not exploitable under Docker, because Docker creates a top-level read-only layer that masks any malicious /dev symlink present in the container image — unlike some other Linux container tooling, whose higher-level runtimes built on runc remain exposed to exploitation via a malicious image. This issue has been fixed in versions 1.3.6, 1.4.3 and 1.5.0.
Title runc: Malicious image with /dev symlink can trigger limited host filesystem integrity violations
Weaknesses CWE-61
References
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N'}


Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-07-01T00:02:08.639Z

Reserved: 2026-04-21T14:15:21.958Z

Link: CVE-2026-41579

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-01T03:15:15Z

Weaknesses
  • CWE-61

    UNIX Symbolic Link (Symlink) Following