Cloud Services Require a Shift in Security Strategy

Enterprise VulnerabilitiesFrom DHS/US-CERT's National Vulnerability Database CVE-2019-13139PUBLISHED: 2019-08-22

In Docker before 18.09.4, an attacker who is capable of supplying or manipulating the build path for the "docker build" command would be able to gain command execution. An issue exists in the way "docker build" processes remote git URLs, and results in command injection into the ...

CVE-2019-15325PUBLISHED: 2019-08-22

In GalliumOS 3.0, CONFIG_SECURITY_YAMA is disabled but /etc/sysctl.d/10-ptrace.conf tries to set /proc/sys/kernel/yama/ptrace_scope to 1, which might increase risk because of the appearance that a protection mechanism is present when actually it is not.

cloud services require shift security strategy