Bleeping Computer

Docker fixes critical 5-year old authentication bypass flaw

Docker has issued security updates to address a critical vulnerability impacting certain versions of Docker Engine that could allow an attacker to bypass authorization plugins (AuthZ) under certain ...
SlashGear

What Exactly Is The Docker Engine (And What Is It Used For)?

Those familiar with virtual machines will appreciate the sheer amount of convenience they bring in the field of testing and development. Working in an isolated environment not only grants you access ...
CSOonline

Critical Docker Desktop flaw allows container escape

Missing authentication on the Docker Engine management API for Docker Desktop on Windows and Mac allows attackers to break out from containers and potentially execute malicious code on the underlying ...
CSOonline

Vulnerabilities in Docker, other container engines enable host OS access

Leaky Vessels container escape vulnerabilities in Docker runc and other container runtimes potentially break the isolation layer between container and host operating system. Security researchers have ...