TheServerSide

Fix this runC vulnerability to prevent unwanted root access

RunC is a Docker-created, low-level command-line interface tool that spawns and runs containers based on two Open Container Initiative specifications: the Image Specification and the Runtime ...
HotHardware

Alarming runC Flaws Enable Hackers To Exploit Docker Containers For Root Access

Security researchers have found several alarming security flaws in tooling used by containerization tool Docker that allows attackers to attack the host machine. The flaws specifically relate to runC, ...
Bleeping Computer

Dangerous runC flaws could allow hackers to escape Docker containers

Three newly disclosed vulnerabilities in the runC container runtime used in Docker and Kubernetes could be exploited to bypass isolation restrictions and get access to the host system. The security ...
CSOonline

Runtime bugs break container walls, enabling root on Docker hosts

The flaws let attackers abuse masked paths, console bind-mounts, and redirected writes to escape containers and gain host privileges. Three newly disclosed high-severity bugs in the “runc” container ...