Shaun Mouton

Shaun is a friendgineer working on the Chef Support team by day and hopefully asleep at night. He can most likely be found in Austin, Texas, reminiscing about a time when the most complicated thing folks would do with configuration management was make Nagios configuration less onerous.

Chef Habitat and the runC vulnerability (CVE-2019-5736)

An article was shared yesterday detailing a runC vulnerability that affects Docker and Kubernetes where a malicious container can overwrite a host system’s runC binary, thus allowing root-level code execution on the host. This is an operations nightmare and it made me think of how Chef Habitat can help in these situations.

Read more
Posted in: