CVE-2019-5736
A flaw was found in the way runc handled system file descriptors when running containers. A malicious container could use this flaw to overwrite contents of the runc binary and consequently run arbitrary commands on the container host system. Mitigation This vulnerability is mitigated on Red Hat...