⚠️ Dangerous runC flaws could allow hackers to escape Docker containers

｢ runC is a universal container runtime and the OCI reference implementation for running containers. It is responsible for low-level operations such as creating the container process, setting up namespaces, mounts, and cgroups that higher-level tools, like Docker and Kubernetes, can call ｣

https://www.bleepingcomputer.com/news/security/dangerous-runc-flaws-could-allow-hackers-to-escape-docker-containers/

#docker #runc #cybersecurity

Runc breaks pods when CPU requests aren't multiples of 10

https://github.com/opencontainers/runc/issues/4982

#HackerNews #Runc #CPU #issues #Kubernetes #Pods #Multiples #of #10 #Containerization