Docker Cp

Docker cp Was a Root Hole: Three CVEs Fixed

Docker Engine 29.5.1 patches three vulnerabilities in docker cp, including one that let a malicious container execute arbitrary code as root on the host by hijacking the decompression binary lookup.