Dirty Pipe CVE-2022-0847 vulnerability also impacts your container images
According to the news posted by the security researcher of @ChaitinTech, @swing, the Dirty Pipe vulnerability also affects Docker. If you modify the files in the container and restart a new container, you will find that the files are also modified.
This happens because the image file, that is, if the image X of container A is modified, the newly created container B using image X will also be affected. In fact, the vulnerability can move sideways in different containers. In theory, the impact of this vulnerability on Docker is also very high. Docker should release a new version to fix it in the future. It is recommended that users who use Docker pay attention to the follow-up news.
There is also news that some researchers have realized Docker escape through the CVE-2022-0847 vulnerability, but this has not been confirmed. It is recommended that developers and enterprises using Docker pay attention to the official news of Docker.