Docker revoked tokens linking GitHub and Bitbucket with Docker Hub accounts after discovering "unauthorized access" in its Hub database. Developers should check their code to ensure no unauthorized changes have been made.
A flaw in runC, the underlying container runtime for many platforms, can give an attacker root access to vulnerable hosts.