A (surprisingly easy) bug in containerd that allows a malicious container to read host files. It’s an interesting issue because it will work even if the container is sandboxed with gvisor or firecracker.

https://t.co/W9unUvpgrY