Ruizhi Xiao

**Name of the Vulnerable Software and Affected Versions** Moby (Docker Engine) versions prior to 20.10.9 **Description** A bug was found in Moby (Docker Engine) where attempting to copy files using `docker cp` into a specially-crafted container can result in Unix file permission changes for existing files in the host’s filesystem, widening access to others. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. **Recommendations** To resolve the issue, update to Moby (Docker Engine) version 20.10.9 as soon as possible. Running containers do not need to be restarted. As a temporary workaround, ensure you only run trusted containers.