this post was submitted on 05 Feb 2024
10 points (100.0% liked)

Security

4939 readers
3 users here now

Confidentiality Integrity Availability

founded 4 years ago
MODERATORS
[email protected]
10
Leaky Vessels flaws allow hackers to escape Docker, runc containers (www.bleepingcomputer.com)
submitted 7 months ago by [email protected] to c/[email protected]
5 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 1 points 7 months ago (3 children)

Maybe if you try to run fishy apps on containers then the hacker can exploit out of the container. I guess that's a possible scenario ๐Ÿค”

[โ€“] [email protected] 1 points 7 months ago (2 children)

Possibly - so if I keep staying clear of fishy apps Iโ€™d be fine.

Does this affect lxc/d as welll?

[โ€“] [email protected] 2 points 7 months ago (1 children)

It affects mainly docker and kubernets containers. I did a little research and apparently docker isn't based of lxc/lxd anymore, so I suppose that it doesn't affect those. Although I'm not sure what kubernets is based off

[โ€“] [email protected] 4 points 7 months ago

Kubernetes and docker both use containerd, which in turn uses runc which is what the vulnerability is in.