Securing Containers - One Patch at a Time

Dive into a 36-minute Docker session exploring the intricacies of CVE-2016-9962, a critical security vulnerability in container technology. Learn about responsible disclosure practices and their importance in maintaining robust security strategies. Follow Docker maintainer Michael Crosby as he unravels the discovery, root causes, and resolution of this vulnerability. Explore the fascinating realm of kernel boundaries, system calls, and randomized address space. Gain insights into the complexities of container security and understand the potential consequences of file descriptor leaks. Walk away with a deeper appreciation for the meticulous work involved in securing containers and the critical importance of addressing vulnerabilities promptly.