Borys Popławski

**Name of the Vulnerable Software and Affected Versions** runc versions prior to 1.0-rc6 Docker versions prior to 18.09.2 **Description** The issue is related to file-descriptor mishandling in the runc tool, which can be exploited to execute arbitrary code. This can allow an attacker to overwrite the host runc binary and gain root access. The vulnerability can be exploited by executing a command as root within a container, either by creating a new container with an attacker-controlled image or by attaching to an existing container with docker exec. The vulnerability affects Azure Container Instances (ACI) and can be used to escape from a container and gain access to other containers in the same cluster. **Recommendations** For runc versions prior to 1.0-rc6: Update to a version later than 1.0-rc6 to fix the file-descriptor mishandling issue. For Docker versions prior to 18.09.2: Update to a version later than 18.09.2 to ensure that the runc tool is updated to a secure version. As a temporary workaround, consider disabling the execution of commands as root within containers to minimize the risk of exploitation.