CVE-2019-5736 (https://nvd.nist.gov/vuln/detail/CVE-2019-5736): runc: Execution of malicious containers allows for container escape and access to host filesystem
I've been advised that this was fixed in -rc7 which is no longer in the tree. This can probably be closed since a newer version is stable.
New GLSA request filed.
This issue was resolved and addressed in GLSA 202003-21 at https://security.gentoo.org/glsa/202003-21 by GLSA coordinator Thomas Deutschmann (whissi).