Hacker News new | ask | show | jobs
by BobbyTables2 46 days ago
I doubt your “distroless” container is any safer for this vulnerability .

Infecting sudo just makes for a quick demo.

If your container has different processes at different user ids, the exploit would still be effective.

It would likely also be able to “modify” read only files mapped from the host.
1 comments
himata4113 45 days ago
distroless rootless containers don't have the syscalls enabled to do anything reasonable with this exploit
link