A container breakout security flaw found in the runc container runtime allows malicious containers to overwrite the host runc binary and gain root-level code execution on the host machine. The vulnerability was found by security researchers Adam Iwaniuk and Borys Pop..awski. Amazon, Google and Docker have updated their software, and all users are advised to update to the latest releases which are patched against CVE-2019-5736. According to a scan shared by the CEO of Shodan John Matherly on YCombinator, approximately 4,000 Docker daemons are exposed.
Source: https://www.bleepingcomputer.com/news/security/runc-vulnerability-gives-attackers-root-access-on-docker-kubernetes-hosts/