Mirantis named a Challenger in 2024 Gartner® Magic Quadrant™ for Container Management  |  Learn More

Store

Training

Government

< BLOG HOME

Security patch available for container escape vulnerability affecting Mirantis Container Runtime and Mirantis Kubernetes Engine

Brad Fewster - February 08, 2024
- technical bulletin, container breakout, security patch, container vulnerability, CVE, container escape, security, Mirantis Kubernetes Engine, mirantis container runtime
image

Mirantis has patched a container escape vulnerability in runc (CVE-2024-21626) that allows hackers to compromise the host filesystem and cause container breakouts. The vulnerability, which is rated high severity by the National Institute of Standards and Technology and Open Container Initiative, results from an internal file descriptor leak. The flaw affects Mirantis Container Runtime (MCR) and Mirantis Kubernetes Engine (MKE) through the use of the runc application to launch containers.

Mirantis fixes CVEs impacting MCR and MKE promptly to ensure a secure operating environment for our customers. While MCR requires an updated software release to fix this issue, the risk to MKE can be remediated without an updated version of MKE. MKE customers who use MCR as the container runtime should immediately upgrade to MCR version 23.0.9-1 to ensure security against this CVE, though an update to MKE itself is not required.

Further technical information on the vulnerability as well as how to upgrade and secure your MCR deployment can be found in the MCR Technical Bulletin. Likewise, information on securing MKE can be found in the MKE Technical Bulletin.

Mirantis has also prepared a security patch for k0s.

Recommended posts

Mirantis Kubernetes Engine 4 Brings Composability to Enterprise Kubernetes

Mirantis Kubernetes Engine 4 Brings Composability to Enterprise Kubernetes

READ NOW
Mirantis is a Leader in the Omdia Universe: Container Management Products, 2024–25

Mirantis is a Leader in the Omdia Universe: Container Management Products, 2024–25

READ NOW
Top 5 Kubernetes Security Challenges and Best Practices

Top 5 Kubernetes Security Challenges and Best Practices

READ NOW

Brad Fewster

Brad Fewster is a Sr. Engineering Manager at Mirantis.

Mirantis simplifies Kubernetes.

From the world’s most popular Kubernetes IDE to fully managed services and training, we can help you at every step of your K8s journey.

Connect with a Mirantis expert to learn how we can help you.

CONTACT US

Join Our Exclusive Newsletter

Get cloud-native insights and expert commentary straight to your inbox.

SUBSCRIBE NOW

Join Our Exclusive Newsletter

Get cloud-native insights and expert commentary straight to your inbox.

SUBSCRIBE NOW

SOLUTIONS:

Technology & SaaS

One-stop Kubernetes solutions to accelerate innovation.

LEARN MORE

SOLUTIONS:

Secure clouds for financial services

Run business-critical applications on a cloud designed for financial services—backed by cloud experts with over a decade of experience.

LEARN MORE
Mirantis logo

900 E Hamilton Avenue
Suite 650
Campbell, CA 95008
+1-650-963-9828

Privacy Policy

Do Not Sell My Information

UK Modern Slavery Act Statement

Sitemap

Virtualization Solutions
Services
Platform
Company

© 2005 - 2024 Mirantis, Inc. All rights reserved. “Mirantis” and “FUEL” are registered trademarks of Mirantis, Inc. All other trademarks are the property of their respective owners.