42 min listen
Encore: The secrets behind Docker.
FromCyberWire Daily
ratings:
Length:
21 minutes
Released:
Nov 26, 2022
Format:
Podcast episode
Description
Alon Zahavi from CyberArk, joins Dave Bittner on this episode to discuss CyberArk's work in conjunction with Patch Tuesday. CyberArk published about how Docker inadvertently created a new vulnerability and what happens when it's exploited.
CyberArk's research concluded that an attacker may execute files with capabilities or setuid files in order to escalate its privileges up to root level. CyberArk found the new vuln in some of Microsoft’s Docker images, caused by misuse of Linux capabilities, a powerful additional layer of security that gives admins the ability to assign capabilities and privileges to processes and files in the Linux system
The research can be found here:
How Docker Made Me More Capable and the Host Less Secure
CyberArk's research concluded that an attacker may execute files with capabilities or setuid files in order to escalate its privileges up to root level. CyberArk found the new vuln in some of Microsoft’s Docker images, caused by misuse of Linux capabilities, a powerful additional layer of security that gives admins the ability to assign capabilities and privileges to processes and files in the Linux system
The research can be found here:
How Docker Made Me More Capable and the Host Less Secure
Released:
Nov 26, 2022
Format:
Podcast episode
More Episodes from CyberWire Daily
A bipartisan blueprint for American leadership. by CyberWire Daily