A serious security vulnerability has been discovered in the core container code. The flaw resides in runC, a lightweight low-level command-line tool for spawning and running containers. The vulnerability, identified as CVE-2019-5736, was discovered by open source security researchers Adam Iwaniuk and Borys Pop..awski and publicly disclosed by Aleksa Sarai, a senior software engineer and runC maintainer at SUSE Linux GmbH. Major vendors and cloud service providers have already been pushing out security patches to address the issue.
Source: https://thehackernews.com/2019/02/linux-container-runc-docker.html