https://brauner.github.io/2019/02/12/privileged-containers.html Christian Brauner, maintainer of #LXC fixes a vulnerability that was discovered affecting #runC, the default #Docker container runtime. As a side note I was astonished by the amount of presentations at #FOSDEM this year about running unprivileged a.k.a. rootless containers when #LXC does it since 2013. TIL that #kubernetes and friends run fully privileged containers . Scary shit.
mastodon.otherreality.net is one server in the network