repomanz Posted May 31, 2019 Share Posted May 31, 2019 (edited) Hi Unraid Dev, Saw this in one of my feeds today and wanted to bring to your attention. https://nakedsecurity.sophos.com/2019/05/31/unpatched-docker-bug-allows-read-write-access-to-host-os/ https://seclists.org/oss-sec/2019/q2/131 repo Edited May 31, 2019 by repomanz Quote Link to comment
ken-ji Posted June 3, 2019 Share Posted June 3, 2019 Sounds serious, but would only affect users who still keep actual data inside docker containers and need to manually copy them out. Quote Link to comment
unrateable Posted June 4, 2019 Share Posted June 4, 2019 19 hours ago, ken-ji said: Sounds serious, but would only affect users who still keep actual data inside docker containers and need to manually copy them out. is data on inside docker mounted array paths in danger ? Quote Link to comment
ken-ji Posted June 4, 2019 Share Posted June 4, 2019 reread the bulletin and the exploit and it seems the flaw only activates (from within the container when a docker cp command is being run from the host - which as docker security engineers point out, is a very small window of opportunity and a compromised docker container is necessary to get the whole exploit started. 1 Quote Link to comment
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.