MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
runc
Search

CVE-2019-5736: runc container breakout

Tuesday February 12, 2019. 04:48 PM , from LWN.net
Anybody running containerized workloads with runc (used by Docker,
cri-o, containerd, and Kubernetes, among others) will want to make note of
a newly disclosed vulnerability known as CVE-2019-5736. 'The vulnerability allows a malicious container to (with minimal user
interaction) overwrite the host runc binary and thus gain root-level
code execution on the host.' LXC is also evidently vulnerable to a
variant of the exploit.
https://lwn.net/Articles/779542/rss
News copyright owned by their original publishers | Copyright © 2004 - 2019 Zicos / 440Network
Current Date
Aug, Sat 17 - 23:16 CEST