Runc Leaky Vessels container escape — update runc to 1.1.12+ and Docker/Podman immediately. Any container workload on unpatched hosts is at risk of full host compromise. Audit container runtime versions across your fleet.
Runc container escape vulnerability allows attackers to break out of the container to root on the host system. Leaky Vessels vulnerability affecting Docker, Kubernetes, and other container runtimes.
Supernova subscribers receive AI-triaged CVE alerts the moment they're published — before the PoC drops.
Start Supernova — $99/mo →