Remediation

Update the ECS Task Definition to Update Privileged Parameter

Retrieve the existing task definition JSON

aws ecs describe-task-definition \
    --task-definition {{family-or-full-arn}} \
    --query 'taskDefinition' > task-def.json

Edit task-def.json

For every container in the containerDefinitions list, change privileged to false or remove the key (default is false).

"containerDefinitions": [
    {
        "name": "{{app}}",
        "image": "{{image}}",
        "privileged": false,
        ...
    }
]

Register the updated task definition

aws ecs register-task-definition --cli-input-json file://task-def.json