runc / libcontainer Bind Mount Sources Insecure Handling

The recent commit #9c4440 introduces two vulnerabilities to libcontainer that can be exploited by an attacker with partial control over the bind mount sources of a new container.

MD5 | 7de968fb3e742581314cf7629bfd1f9c

Download

Source: packetstormsecurity.com