Skip Navigation

Security @lemmy.ml BlanK0 @lemmy.ml 9 mo. ago

Leaky Vessels flaws allow hackers to escape Docker, runc containers

www.bleepingcomputer.com Leaky Vessels flaws allow hackers to escape Docker, runc containers

Four vulnerabilities collectively called "Leaky Vessels" allow hackers to escape containers and access data on the underlying host operating system.

Leaky Vessels flaws allow hackers to escape Docker, runc containers

Security News @infosec.pub Justin @lemmy.jlh.name 9 mo. ago

Leaky Vessels flaws allow hackers to escape Docker, runc containers

www.bleepingcomputer.com /news/security/leaky-vessels-flaws-allow-hackers-to-escape-docker-runc-containers/

Linux @lemmy.ml Karna @lemmy.ml 9 mo. ago

Leaky Vessels flaws allow hackers to escape Docker, runc containers

www.bleepingcomputer.com /news/security/leaky-vessels-flaws-allow-hackers-to-escape-docker-runc-containers/

Selfhosted @lemmy.world redcalcium @lemmy.institute 9 mo. ago

PSA: Update your docker installation. Leaky Vessels flaws allow hackers to escape Docker, runc containers

www.bleepingcomputer.com /news/security/leaky-vessels-flaws-allow-hackers-to-escape-docker-runc-containers/

You're viewing a single thread.

5 comments

What are the hackers doing in my container in the first place? And how did they drop to shell?
- Maybe if you try to run fishy apps on containers then the hacker can exploit out of the container. I guess that's a possible scenario 🤔
  
  Possibly - so if I keep staying clear of fishy apps I’d be fine.
  
  Does this affect lxc/d as welll?
  
  It affects mainly docker and kubernets containers. I did a little research and apparently docker isn't based of lxc/lxd anymore, so I suppose that it doesn't affect those. Although I'm not sure what kubernets is based off
  
  Kubernetes and docker both use containerd, which in turn uses runc which is what the vulnerability is in.