Описание
[REJECTED CVE] Docker is vulnerable to directory traversal flaws. If a local user were to use a command, such as "docker pull", to install a docker container, a specially crafted tarball could lead to arbitrary files on the host being overwritten.
Отчет
This flaw was found to be a duplicate of CVE-2014-6407. Please see https://access.redhat.com/security/cve/CVE-2014-6407 for information about affected products and security errata.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 7 | docker | Not affected |
Показывать по
Дополнительная информация
7.6 High
CVSS2
Связанные уязвимости
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-6407. Reason: This candidate is a reservation duplicate of CVE-2014-6407. Notes: All CVE users should reference CVE-2014-6407 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
7.6 High
CVSS2