CVE-2019-5736 is a recently disclosed serious vulnerability affecting RunC (the default container runtime for Docker), ContainerD, Podman, and CRI-O. It allows an attacker-controlled rogue or compromised containers running with elevated privileges to escape the container’s sandbox and take over the host machine with root-level privileges.
Read full news article on Dzone