Common Container Manager Is Vulnerable to Dangerous Exploit

A bug in the way a common container management component spawns a service called a "shim" could allow unauthorized third parties to initiate containers with arbitrary contents and permission levels.