Container escape on zCX - DEFCON 29

I can recommend this video about two hackers escaping a running container deployed on IBM zCX feature. It is interesting to see the approach from both sides (z/OS and Linux).

Youtube : DEF CON 29 - Ian Coldwater, Chad Rikansrud - Real Life Story of the 1st Mainframe Container Breakout

Yes, they escaped the linux container. In fact, they did not escape from the virtual machine (running a s390x Linux Ubuntu based image) to the running zCX address space.

I am curious what will come in the future.