Archive for the ‘Virtualization software’ Category

RunC Flaw Lets Attackers Escape Linux Containers to Gain Root on Hosts

February 12th, 2019
A serious security vulnerability has been discovered in the core runC container code that affects several open-source container management systems, potentially allowing attackers to escape Linux container and obtain unauthorized, root-level access to the host operating system. The vulnerability, identified as CVE-2019-5736, was discovered by open source security researchers Adam Iwaniuk and

Posted in Amazon AWS, Cloud hosting, docker, Google Cloud, hacking news, how to hack linux, Kubernetes, linux, linux container, Linux hacking, redhat linux, SELinux, Suse Linux, Virtualization software | Comments (0)

Unpatched VirtualBox Zero-Day Vulnerability and Exploit Released Online

November 8th, 2018
An independent exploit developer and vulnerability researcher has publicly disclosed a zero-day vulnerability in VirtualBox—a popular open source virtualization software developed by Oracle—that could allow a malicious program to escape virtual machine (guest OS) and execute code on the operating system of the host machine. The vulnerability occurs due to memory corruption issues and affects

Posted in hacking news, hypervisors, virtual machine, virtualbox, Virtualization software, Vulnerability, zero-day exploit, Zero-Day Vulnerability | Comments (0)