SB2018110104 - Race condition in Google gVisor
Published: November 1, 2018
Security Bulletin ID
SB2018110104
Severity
Medium
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Adjecent network
Highest impact
Data manipulation
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Race condition (CVE-ID: N/A)
The vulnerability allows an adjacent attacker to overwrite arbitrary files on the host system.
The weakness exists due to race condition when the VFS layer in the sandboxed helper process attempts to ensure consistency between its dentry cache, the hostPaths in the unsandboxed helper, and the host filesystem. An adjacent attacker can desynchronize the dentry cache of the sandboxed helper such that two dentries refer to the same backing file and overwrite files in the host filesystem from inside a Docker container that uses gVisor's runsc".
Remediation
Install update from vendor's website.