runc Open-Source Container Vulnerability

The NCCIC reports it is aware of a vulnerability affecting several open-source container management systems that leverage runc. The NCCIC encourages users and administrators to review the runc security advisory, and the RedHat and Amazon Web Services blogs; and refer to OS and application vendors for mitigations and updates as they become available. Read the advisory at NCCIC/US-CERT.