RHSA-2016:2634-01 -- Redhat docker
|ID: oval:org.secpod.oval:def:502163||Date: (C)2017-10-25 (M)2017-12-06|
|Class: PATCH||Family: unix|
Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that will run virtually anywhere. Security Fix: * It was found that Docker would launch containers under the specified UID instead of a username. An attacker able to launch a container could use this flaw to escalate their privileges to root within the launched container. This issue was discovered by Mrunal Patel . Bug Fix: * This update also provides various bug fixes and enhancements. Users are advised to upgrade to these updated packages.
|Red Hat Enterprise Linux 7|