Leaky Vessels flaws allow hackers to escape Docker, runc containers (www.bleepingcomputer.com)
from BlanK0@lemmy.ml to security@lemmy.ml on 05 Feb 2024 23:01
https://lemmy.ml/post/11516616

#security

threaded - newest

Oisteink@feddit.nl on 06 Feb 2024 00:08 collapse

What are the hackers doing in my container in the first place? And how did they drop to shell?

BlanK0@lemmy.ml on 06 Feb 2024 00:12 collapse

Maybe if you try to run fishy apps on containers then the hacker can exploit out of the container. I guess that’s a possible scenario 🤔

Oisteink@feddit.nl on 06 Feb 2024 00:15 collapse

Possibly - so if I keep staying clear of fishy apps I’d be fine.

Does this affect lxc/d as welll?

BlanK0@lemmy.ml on 06 Feb 2024 00:22 collapse

It affects mainly docker and kubernets containers. I did a little research and apparently docker isn’t based of lxc/lxd anymore, so I suppose that it doesn’t affect those. Although I’m not sure what kubernets is based off

MaienM@sopuli.xyz on 06 Feb 2024 01:18 collapse

Kubernetes and docker both use containerd, which in turn uses runc which is what the vulnerability is in.