Recently, I saw that a critical vulnerability in Docker Desktop has come into discussion. Guys, for those of us using Docker on Windows or Mac, we need to be a bit careful.
I saw that a guy named Felix Boulet, just looking around—or to put it simply, exploring—found this bug. The bug is such that privileged containers, and in some cases even regular containers, can very easily access the Docker Engine API .
Now, the question is, why is accessing the Docker Engine API a problem? The issue is that we use Docker as an isolation environment, so containers don’t affect the host system. But because of this bug, any container could potentially get access to the host machine’s filesystem. Which should never happen.
Luckily, Docker has already fixed this issue in version 4.44.3. If you’re using Docker Desktop, please make sure to update your system.
Top comments (0)