From bba6693cb97e4defc7fde6299a09fc9606124066 Mon Sep 17 00:00:00 2001
From: Wes Widner <kai5263499@gmail.com>
Date: Thu, 22 Feb 2018 08:34:42 -0500
Subject: [PATCH] add icc bug

---
 README.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/README.md b/README.md
index 72621bb..241db6a 100644
--- a/README.md
+++ b/README.md
@@ -133,6 +133,9 @@ A collection of container related security resources
 ### [Setting the Record Straight: containers vs. Zones vs. Jails vs. VMs](https://blog.jessfraz.com/post/containers-zones-jails-vms/)
 * Contains an interesting point about how contains that share network namespaces can snoop on eachother's traffic
 
+### [Docker Layer 2 ICC Bug](https://github.com/brthor/docker-layer2-icc)
+* Containers are able to send raw ethernet frames to other containers with inter-container communication disabled
+
 ### Commercial solutions
 * [StakRox](https://www.stackrox.com/product/) - Container security solution with adaptive threat protection
 * [Netsil](https://netsil.com/) - Operations dashboard for Kubernetes