Version 1 (inspired by original idea DragonSector)
use a malicious.so(which used by runc) with malicious entry point (like #!/proc/self/exe) to hijack the execution of runc, and then open '/proc/self/exe' to hold the file descriptor. Then 'fork-exec' to run another process, and the child process will inherit the file descriptor. Finally, the child process is able to write to the fd after the runc exits. Then 'exec' to run another process to unlink /proc/self/exe to runc, making runc writable. Also, the file descriptors will pass on to the new process. Finally, the new process can overwrite runc by the '/proc/self/fd/*'
Notes:
do not need privileged container;
need a malicious entry point program. It's no problem for
docker run, but when runningdocker exec, it has to run that specific program.
-
build and run
cd CVE-2019-5376/v1 gcc run.c -o run -static gcc run.c -o libseccomp.so.2 -shared -fPIC docker build -t cve-2019-5376-v1 . docker run cve-2019-5376-v1
start the malicious container first, and run a process (in a loop) to monitor new processes in /proc. Once finding a new one, open '/proc/{pid}/exe' to hold the file descriptor. Then it's the same like above.
Notes:
need privileged container
works on every
docker execcommand towards the container, but will not work when usingdocker runto start the new container
-
build and run
cd CVE-2019-5376/v2 gcc run.c -o run -static docker build -t cve-2019-5376-v2 . docker run -it --privileged --name test_instance cve-2019-5376-v2 # open another terminal, and run docker exec docker exec -it test_instance bash