Jump to content
repomanz

CVE-2019-5736 (runc vulnerability with docker)

6 posts in this topic Last Reply

Recommended Posts

Thanks @repomanz, I was just coming here to post on this. 

 

More info in case the vendor specific info may be of assistance to anyone...
I know my brain works off of keyword recognition much of the time ;-) :
Amazon/AWS - https://aws.amazon.com/security/security-bulletins/AWS-2019-002/
Kubernetes - https://kubernetes.io/blog/2019/02/11/runc-and-cve-2019-5736/

redhat - https://access.redhat.com/security/vulnerabilities/runcescape

Ubuntu - https://www.ubuntuupdates.org/package/core/bionic/universe/updates/runc

Kubernetes - https://kubernetes.io/blog/2019/02/11/runc-and-cve-2019-5736/

US_CERT release - https://www.us-cert.gov/ncas/current-activity/2019/02/11/runc-Open-Source-Container-Vulnerability

Share this post


Link to post

Thanks for the reports.  We did see a new docker release, 18.09.02 that addresses this.  We are trying to determine if it warrants Unraid 6.6.7 patch release.

Share this post


Link to post
37 minutes ago, limetech said:

Thanks for the reports.  We did see a new docker release, 18.09.02 that addresses this.  We are trying to determine if it warrants Unraid 6.6.7 patch release.

 

Security comes first. I'd say it does.

  • Upvote 3

Share this post


Link to post

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now