This bug is made worse by the fact that docker does not use a least privilege design, and requires ambient authority to do anything period (as root!)
Quote Tweet
CVE-2018-15664: docker (all versions) is vulnerable to a symlink-race attack seclists.org/oss-sec/2019/q


