r000t on Nostr: New Linux glibc flaw lets attackers get root on major distros ...
New Linux glibc flaw lets attackers get root on major distros
https://www.bleepingcomputer.com/news/security/new-linux-glibc-flaw-lets-attackers-get-root-on-major-distros/
Bugs like this are why I *never* consider Docker, Kubernetes, and other containerization tools to be sufficient for running untrusted code, or to keep different customers separated. They are *not* security features. They make development and deployment easier and more predictable and that's *it*.
If you actually want or expect isolation, nothing less than a virtual machine is acceptable.
https://www.bleepingcomputer.com/news/security/new-linux-glibc-flaw-lets-attackers-get-root-on-major-distros/
Bugs like this are why I *never* consider Docker, Kubernetes, and other containerization tools to be sufficient for running untrusted code, or to keep different customers separated. They are *not* security features. They make development and deployment easier and more predictable and that's *it*.
If you actually want or expect isolation, nothing less than a virtual machine is acceptable.