Google Gvisor
By the Year
In 2023 there have been 0 vulnerabilities in Google Gvisor . Gvisor did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 3 | 7.37 |
It may take a day or so for new Gvisor vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Google Gvisor Security Vulnerabilities
Google gVisor before 2018-08-22 reuses a pagetable in a different level with the paging-structure cache intact, which
CVE-2018-20168
5.5 - Medium
- December 17, 2018
Google gVisor before 2018-08-22 reuses a pagetable in a different level with the paging-structure cache intact, which allows attackers to cause a denial of service ("physical address not valid" panic) via a crafted application.
Improper Input Validation
pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01
CVE-2018-19333
9.8 - Critical
- November 17, 2018
pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01 allows attackers to overwrite memory locations in processes running as root (but not escape the sandbox) via vectors involving IPC_RMID shmctl calls, because reference counting is mishandled.
Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which
CVE-2018-16359
6.8 - Medium
- September 02, 2018
Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Google Gvisor or by Google? Click the Watch button to subscribe.
