Remote Code Execution in Alpine Linux
https://justi.cz/security/2018/09/13/alpine-apk-rce.html [justi.cz]
2018-09-13 20:07
Given a MITM apk repo.
Persistent arbitrary file writes can be easily turned into code execution because of apk’s “commit hooks” feature. If we can figure out a way to extract a file into /etc/apk/commit_hooks.d/ and have it stay there after the cleanup process, it will be executed before apk exits.
Transactions are hard.
source: HN