runc Vulnerability Response (CVE-2019-5736)
Incident Report for Aptible
Resolved
Today, a vulnerability (CVE-2019-5736) was announced in runc [0], the container runtime underlying Docker, and by extension, containers run on Aptible Enclave.

Our Security Team began investigating the vulnerability and preparing our remediation strategy at 13:30 UTC (8:30am EST) today, February 11. As part of our immediate remediation efforts, we have already upgraded runc across our infrastructure.

It is possible, though not expected, that we may perform additional actions to remediate this vulnerability, such as:

* Restarting app containers
* Restarting database containers (with some downtime)

We will update this status page if any such action becomes required.

[0] https://seclists.org/oss-sec/2019/q1/119
Posted 4 months ago. Feb 11, 2019 - 08:30 EST