New containerd Security Hole Needs to Be Patched ASAP

Source: thenewstack.io

New containerd Security Hole Needs to Be Patched ASAP

Category: Kubernetes, Docker

These days most of us are using the containerd runtime to manage our container’s lifecycle. That, of course, means we need to pay especially close attention to any possible containerd security issues. Alas, the UK security company NCC Group, has uncovered a potentially nasty one: CVE-2020-15257, containerd-shim API Exposed to Host Network Containers.

Sure, it’s best practice to run containers with a reduced set of privileges, with a non-zero UID, and with isolated namespaces.

And you should update to these versions as soon as you can.
Read Full Article On thenewstack.io
Achieve superior email deliverability with ToastMail! Our AI-driven tool warms up inboxes, monitors reputation, and ensures emails reach their intended destination. Sign up today for a spam-free future.

Related Articles

Interview with Dylan Scott — DevOps Engineer & Founder of Docker Southampton User Group
Interview with Dylan Scott — DevOps Engineer & Founder of Docker Southampton User Group
How DevSecOps Can Help Avoid Catastrophic Breaches
How DevSecOps Can Help Avoid Catastrophic Breaches
Top 8 outsourced Kubernetes experts of 2018 – Data Driven Investor – Medium
Top 8 outsourced Kubernetes experts of 2018 – Data Driven Investor – Medium
Community Partners
CrowdSec
Autonomous.ai | Best Standing Desks & Ergonomic Office Chairs

Mailjet

Digital Ocean

Become a Partner?
DevOps Careers
    • Add a Job?