Last week, Snyk, announced multiple CVEs affecting Docker, containerd, AWS EKS, Red Hat, Ubuntu, and hundreds of products shipping runc or buildkit. I'll explain what's going on and how I see the risk in these vulnerabilities, and maybe we'll go down memory lane with a history of container breakout bugs.
Runc
CVE-2024-21626
BuildKit
CVE-2024-23650
CVE-2024-23651
CVE-2024-23652
CVE-2024-23653
Moby
CVE-2024-2455
🗞️ Sign up for my weekly newsletter for the latest on upcoming guests and what I'm releasing: www.bretfisher...
Topics
=====
Snyk "Leaky Vessels" CVE-2024-21626 snyk.io/blog/c...
Docker Security Advisory www.docker.com...
NVD CVE nvd.nist.gov/v...
Runc github.com/ope...
The Secure Developer Podcast episode deep dive www.devseccon....
Bret Fisher
=========
/ bretfisher
/ bretefisher
www.bretfisher...
Join my Community 🤜🤛
================
💌 Weekly newsletter on upcoming guests and stuff I'm working on: www.bretfisher...
💬 Join the discussion on our Discord chat server / discord
👨🏫 Coupons for my Docker and Kubernetes courses www.bretfisher...
🎙️ Podcast of this show www.bretfisher...
Show Music 🎵
==========
waiting music: Jakarta - Bonsaye www.epidemicso...
intro music: I Need A Remedy (Instrumental Version) - Of Men And Wolves www.epidemicso...
outro music: Electric Ballroom - Quesa www.epidemicso...
28 авг 2024
