CVE-2018-9862

The connected CNVD entry confirms a vulnerability in runV for Docker 1.0.0, where util.c mishandles numeric usernames in /etc/passwd, enabling a local attacker to gain root by using docker exec with -u set to that value. No remediation details are provided in the documents.