Jordmoz

**Name of the Vulnerable Software and Affected Versions** runC versions prior to 0.1.0 Docker versions prior to 1.11.2 **Description** The issue improperly treats a numeric UID as a potential username, allowing local users to gain privileges via a numeric username in the password file in a container. This occurs because the GetExecUser function in the libcontainer/user package will improperly interpret numeric UIDs as usernames if the method is used without verifying that usernames are formatted as expected. **Recommendations** For runC versions prior to 0.1.0, update to version 0.1.0 or later to resolve the issue. For Docker versions prior to 1.11.2, update to version 1.11.2 or later to resolve the issue. As a temporary workaround, consider verifying that usernames are formatted as expected before using the GetExecUser function to minimize the risk of exploitation.