A serious vulnerability in RunC—the primary container runtime for Docker, Kurbernetes, and more—allows a malicious container to run arbitrary code as root on the host. This is a pretty critical vulnerability, especially for anyone that offers public access to containers. Watch today’s quick, snowpocalypse video to learn more about this flaw, and go get the patch immediately if you use Docker or Kurbernetes.
Show note: Please excuse the lower production standards of this “shot from home” video.
Episode Runtime: 1:48
Direct YouTube Link: https://www.youtube.com/watch?v=xCoS35gxUqA
EPISODE REFERENCES:
- Serious RunC vulnerability patched – SecLists
- “Doomsday” Docker security hole – ZDNet
—Corey Nachreiner, CISSP (@SecAdept)
Leave a Reply