CVE-2019-5736: runc container breakout
CVE-2019-5736: runc container breakout
Posted Feb 13, 2019 22:35 UTC (Wed) by Cyberax (✭ supporter ✭, #52523)In reply to: CVE-2019-5736: runc container breakout by NightMonkey
Parent article: CVE-2019-5736: runc container breakout
Amazon doesn't use Docker containers to isolate different tenants. Even Fargate and Lambda use full-scale virtualization for isolation, so that your data won't leak into other users' accounts.
If you run untrusted containers then your account is vulnerable. But why would you do this?