4.5

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2025-65105

GHSA ID

GHSA-j3rw-fx6g-q46j

EPSS Score

CWE

CWE-61

Published

12/2/2025

Updated

12/2/2025

KEV Status

Technology

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2025-65105

CVE-2025-65105: Apptainer ineffectively applies selinux and apparmor --security options

Impact

In Apptainer versions less than 1.4.5, a container can disable two of the forms of the little used --security option, in particular the forms --security=apparmor:<profile> and --security=selinux:<label> which otherwise put restrictions on operations that containers can do. The --security option has always been mentioned in Apptainer documentation as being a feature for the root user, although these forms do also work for unprivileged users on systems where the corresponding feature is enabled. Apparmor is enabled by default on Debian-based distributions and SElinux is enabled by default on RHEL-based distributions, but on SUSE it depends on the distribution version.

In addition, a bug in the detection of selinux support in Apptainer's suid mode means that --security selinux:<label> flags may not be applied, even in the absence of an attack. In that case a warning message is emitted indicating that selinux is unavailable, but the warning may be may be overlooked, mis-interpreted, or not seen when apptainer is run from a script or other tool. Failure to apply requested restrictions should result in a fatal error rather than just a warning message.

Patches

Ineffective write of selinux process labels is addressed via an update to the containers/selinux dependency in https://github.com/apptainer/apptainer/pull/3226. That update brings in the upstream fix for https://github.com/advisories/GHSA-cgrx-mc8f-2prm which was for a different but related vulnerability.

Ineffective write of apparmor process profiles is addressed in commit 4313b42.

Failure to detect apparmor / selinux support, when --security flags are provided, is made an error rather than a warning in commit 82f1790.

Workarounds

There are no known workarounds, other than to define system-wide apparmor / selinux policy for Apptainer itself. This would apply to all containers, not just those run with the --security flags, and could impact the operation of Apptainer itself.

References

Thanks to Sylabs for finding this issue, fixing it in https://github.com/sylabs/singularity/security/advisories/GHSA-wwrx-w7c9-rf87 which was easy to import into Apptainer, and disclosing it early to the Apptainer project for a coordinated release.

The related upstream runc disclosure which inspired the investigation is https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm.

(GitHub Advisory)

Miggo Vulnerability Database

→

CVE-2025-65105

CVE-2025-65105:

4.5

CVSS Score

3.1

-

CVSS Score

Basic Information

CVE ID

CVE-2025-65105

GHSA ID

GHSA-j3rw-fx6g-q46j

EPSS Score

CWE

CWE-61

Published

12/2/2025

Updated

12/2/2025

KEV Status

Technology

Basic Information

CVE ID

GHSA ID

EPSS Score

CWE

Published

Updated

KEV Status

Technology

Technical Details

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
github.com/apptainer/apptainer	go	< 1.4.5	1.4.5

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability in Apptainer (GHSA-j3rw-fx6g-q46j) consists of three related issues that lead to ineffective enforcement of security policies specified via --security options.

AppArmor Profile Bypass: The function apparmor.LoadProfile in internal/pkg/security/apparmor/apparmor_supported.go was responsible for applying an AppArmor profile. It did so by writing to /proc/self/attr/exec. However, it didn't validate that this path was a legitimate file inside the proc filesystem. This created a vulnerability where an attacker could use a symbolic link or other methods to redirect the write operation, causing the AppArmor profile to not be applied, without any error being raised. The patch in commit 4313b42 fixes this by using the pathrs-lite/procfs library to ensure the write happens to a genuine procfs file descriptor.
SELinux Label Ineffectiveness: The application of SELinux labels was flawed due to a vulnerability in a dependency, github.com/opencontainers/selinux. The function selinux.SetExecLabel in Apptainer calls this library. The underlying issue, related to GHSA-cgrx-mc8f-2prm, could cause the SELinux label to not be applied correctly. Commit 5049f6c addresses this by updating the dependency to a patched version (v1.13.1).
Failure to Error on Unavailable Security Mechanisms: The security.Configure function in internal/pkg/security/security.go orchestrates the application of these security settings. Prior to the patch, if a user requested an AppArmor or SELinux security profile, but the corresponding security module was not available on the system, Apptainer would only print a warning and proceed to run the container without the requested security restrictions. This "fail-open" behavior is dangerous, as the warning could be easily missed, leading to a false sense of security. The patch in commit 82f1790 changes this behavior to return a fatal error, thus ensuring the container does not run if the specified security settings cannot be enforced.

In summary, exploitation would involve the security.Configure function, which in turn calls apparmor.LoadProfile or selinux.SetExecLabel. These functions would appear in a runtime profile when the vulnerability is triggered.

Vulnerable functions

apparmor.LoadProfile

internal/pkg/security/apparmor/apparmor_supported.go

The function was vulnerable to a race condition or symlink attack because it was opening `/proc/self/attr/exec` without verifying it's a genuine file descriptor inside procfs. An attacker could redirect this write to a different file, effectively disabling the AppArmor profile enforcement silently. The patch fixes this by using `pathrs-lite/procfs` to securely open the file.

security.Configure

internal/pkg/security/security.go

This function was responsible for configuring security features. If a requested security feature like AppArmor or SELinux was unavailable, it would only issue a warning and continue execution. This "fail-open" behavior is dangerous as it leads to a container running with fewer security restrictions than intended, and the warning could be easily missed. The patch changes this to a fatal error.

selinux.SetExecLabel

internal/pkg/security/selinux/selinux_linux.go

This function is a wrapper that calls the underlying `opencontainers/selinux` library to set the SELinux process label. The vulnerability was in the dependency, which could lead to the label not being applied correctly. This would cause the container to run without the intended SELinux restrictions. The vulnerability was fixed by updating the dependency.

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

4.5

-

Basic Information

Basic Information

Concerned about an active attack path?

CVE-2025-65105: Apptainer ineffectively applies selinux and apparmor --security options

Impact

Patches

Workarounds

References

CVE-2025-65105:

4.5

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

Basic Information

Basic Information

CVE-2025-65105: Apptainer ineffectively applies selinux and apparmor --security options

Impact

Patches

Workarounds

References

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Technical Details

4.5

4.5

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI