CVE-2025-31133, CVE-2025-52565, CVE-2025-52881 - runc container issues

2025 024 ยท 2026-06-05

Actions

Rate this issue

Technical Details

Affected Versions runc-1.3.2-2
Regions all
CVE IDs CVE-2025-31133, CVE-2025-52565, CVE-2025-52881
Deprecation Date 2025-11-05
Migration Required Yes
Cost Impact Neutral
IaC Impact High

What This Means

For DevOps Teams

Update your container management systems to the latest versions of runc (version 1.3.2-2) to address the security vulnerabilities. For Amazon ECS, ensure you are using the latest AMIs or perform a 'yum update -security'. For EKS, update your nodes to the patched AMIs or delete existing Fargate pods to use the patched runtime.

For Platform Teams

Integrate the updated runc version (1.3.2-2) into your container management systems to enhance security. Ensure that your platform configurations are aligned with the latest security patches to maintain a secure environment.

For Executives

Evaluate and implement the necessary updates to mitigate security risks associated with the runc vulnerabilities (CVE-2025-31133, CVE-2025-52565, CVE-2025-52881) to ensure the security and integrity of your containerized workloads.

Source

View original AWS announcement โ†’

Weekly AWS Digest in Your Inbox

No spam, no headlines. Just a weekly summary of the 3โ€“7 AWS changes that matter for DevOps and Platform teams.

๐Ÿ“ง Exactly 1 email per week โ€ข Every Tuesday โ€ข Unsubscribe anytime

Today: AWS only. Coming next: Azure and other major clouds.