Last Updated on
Insight: RunC Flaw Lets Attackers To Overwrite The host And Gain Root On Hosts
Open security researchers Adam Iwaniuk, Borys Poplawski and Aleska Sarai discovered a vulnerability CVE-2019-5736 in the core runC (the underlying container runtime underneath Docker, cri-o, containerd, Kubernetes, and so on)container code.
It allows attackers to execute a command as root in a new container with an attacker-controlled image, or in an existing container, to which the attacker previously had write access, that can be attached with docker exec. According to the researchers, This occurs because of file-descriptor mishandling, related to /proc/self/exe.