CSOonline

Dirty Pipe root Linux vulnerability can also impact containers

The dangerous Linux privilege escalation flaw dubbed Dirty Pipe that was recently disclosed could also impact applications and systems that use containerization through tools such as Docker, ...
Dark Reading

Containers for Data Analysis Are Rife With Vulnerabilities

Regularly updating software components can eliminate two-thirds of the vulnerabilities found in container images, while minimizing the number of libraries can also reduce the attack surface area in ...
Threat Post

Bug in the Linux Kernel Allows Privilege Escalation, Container Escape

A missing check allows unprivileged attackers to escape containers and execute arbitrary commands in the kernel. To go along with the “Dirty Pipe” Linux security bug coming to light, two researchers ...
TheServerSide

Fix this runC vulnerability to prevent unwanted root access

RunC is a Docker-created, low-level command-line interface tool that spawns and runs containers based on two Open Container Initiative specifications: the Image Specification and the Runtime ...
Dark Reading

Vulnerability Leaves Container Images Without Passwords

Nearly one in five of the most popular containers available on the Docker store have no password for root access. That's the finding of researcher Jerry Gamblin, building on work by researchers at ...
Security

Seal Security launches Seal Base Images to eliminate container vulnerabilities

Seal Security, a leader in open-source vulnerability remediation, today announced the launch of Seal Base Images, a solution designed to future-proof containerized applications. Seal Base Images ...

Microsoft fixes dozens of security flaws in Windows, Office, and Azure

Yesterday, February 10th, was Patch Tuesday. Microsoft released security updates to address 58 new security vulnerabilities.