A missing check allows unprivileged attackers to escape containers and execute arbitrary commands in the kernel. To go along with the “Dirty Pipe” Linux security bug coming to light, two researchers ...

A high-severity security vulnerability in the Kyverno admission controller for container images could allow malicious actors to import a raft of nefarious code into cloud production environments. The ...

The cloud-focused program will pay out $10,000 as its top reward. A public bug-bounty program for the Kubernetes container technology framework has just launched, backed by Google, HackerOne and the ...

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...

A number of container environments are vulnerable to container escape, due to bugs in two Linux-based container tools, runc and BuildKit. Runc is a command line interface (CLI) tool for spawning and ...

Cisco today published an update for its IOS XE operating system to patch a critical vulnerability that could allow a remote attacker to bypass authentication on devices running an outdated version of ...

Microsoft has plugged a flaw in its Azure Container Instances (ACI) service that could have allowed a malicious actor to access customers' information. Researchers at Palo Alto Networks first reported ...

Kubernetes users running the CRI-O container engine need to patch against a newly-discovered container escape vulnerability. Discovered by Crowdstrike and subbed “cr8escape”, the CRI-O bug ...