Dirty Pipe CVE-2022-0847 vulnerability also impacts your container images

CVE-2022-0847 container
The Dirty Pipe high-risk vulnerability in Linux Kernel has attracted the attention of the industry. The vulnerability number is CVE-2022-0847, and the CVSS score is 7.4.

According to the news posted by the security researcher of @ChaitinTech, @swing, the Dirty Pipe vulnerability also affects Docker. If you modify the files in the container and restart a new container, you will find that the files are also modified.

This happens because the image file, that is, if the image X of container A is modified, the newly created container B using image X will also be affected. In fact, the vulnerability can move sideways in different containers. In theory, the impact of this vulnerability on Docker is also very high. Docker should release a new version to fix it in the future. It is recommended that users who use Docker pay attention to the follow-up news.

There is a description of how the CVE-2022-0847 vulnerability affects your container images on the website of security firm Snyk, mainly by modifying container A, the image can be modified, thereby affecting other containers created by the image, until the user deletes or replaces the new image.

There is also news that some researchers have realized Docker escape through the CVE-2022-0847 vulnerability, but this has not been confirmed. It is recommended that developers and enterprises using Docker pay attention to the official news of Docker.