May 31, 20197 yr Hi Unraid Dev, Saw this in one of my feeds today and wanted to bring to your attention. https://nakedsecurity.sophos.com/2019/05/31/unpatched-docker-bug-allows-read-write-access-to-host-os/ https://seclists.org/oss-sec/2019/q2/131 repo Edited May 31, 20197 yr by repomanz
June 3, 20197 yr Sounds serious, but would only affect users who still keep actual data inside docker containers and need to manually copy them out.
June 4, 20197 yr 19 hours ago, ken-ji said: Sounds serious, but would only affect users who still keep actual data inside docker containers and need to manually copy them out. is data on inside docker mounted array paths in danger ?
June 4, 20197 yr reread the bulletin and the exploit and it seems the flaw only activates (from within the container when a docker cp command is being run from the host - which as docker security engineers point out, is a very small window of opportunity and a compromised docker container is necessary to get the whole exploit started.
Archived
This topic is now archived and is closed to further replies.