Docker Doomsday Issue

By Chloe posted 02-20-2019 10:43

  

Recently a vulnerability was discovered in runc, a runtime environment used in containers, which may affect some Dockerized applications. CVE-2019-5736 manifests itself as a malicious container overwriting contents of the runc binary and consequently running arbitrary commands on the container host system.

This vulnerability requires a malicious container, but Jama Software has vetted all the containers that run on-premises inside the Replicated application. This mitigates the primary attack vector (running an untrusted container). Self-hosted customers can choose to upgrade to Replicated 2.32.2 which will upgrade Docker versions to patch the runc container breakout, or customers can manually upgrade Docker to 18.09.2 or 18.06.2.

 

0 comments
42 views