Описание
ELSA-2021-15112: docker-engine docker-cli security update (IMPORTANT)
docker-engine [19.03.11-11]
- Addresses CVE-2021-30465 - updated runc minimum version to runc >= 3:1.0.0-1.rc95.
[19.03.11-10]
- Addresses runc CVE-2021-30465 - updated runc versions in cli/vendor.conf and docker-engine/vendor.conf to 1.0.0-rc95.
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
docker-cli
19.03.11.ol-11.el7
docker-engine
19.03.11.ol-11.el7
Oracle Linux x86_64
docker-cli
19.03.11.ol-11.el7
docker-engine
19.03.11.ol-11.el7
Связанные CVE
Связанные уязвимости
runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.
runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.
runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies on a race condition.
runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Dire ...
