[go: up one dir, main page]
Four vulnerabilities collectively called "Leaky Vessels" allow hackers to escape containers and access data on the underlying host operating system.
  • Oisteink@feddit.nl
    21
    2 years ago

    What are the hackers doing in my container in the first place? And how did they drop to shell?

    • BlanK0@lemmy.mlOP
      1
      2 years ago

      Maybe if you try to run fishy apps on containers then the hacker can exploit out of the container. I guess that鈥檚 a possible scenario 馃

      • Oisteink@feddit.nl
        21
        2 years ago

        Possibly - so if I keep staying clear of fishy apps I鈥檇 be fine.

        Does this affect lxc/d as welll?

        • BlanK0@lemmy.mlOP
          2
          2 years ago

          It affects mainly docker and kubernets containers. I did a little research and apparently docker isn鈥檛 based of lxc/lxd anymore, so I suppose that it doesn鈥檛 affect those. Although I鈥檓 not sure what kubernets is based off

          • MaienM@sopuli.xyz
            4
            2 years ago

            Kubernetes and docker both use containerd, which in turn uses runc which is what the vulnerability is in.