Описание
util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname, constructed with an empty first argument in an ioutil.TempDir call.
A flaw was found in moby. Moby buildkit calls os.OpenFile with a potentially unsafe qemu-check temporary pathname, constructed with an empty first argument in an ioutil.TempDir call.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenShift Container Platform 4 | openshift4/ose-cli | Not affected | ||
| Red Hat OpenShift Container Platform 4 | openshift4/ose-cli-artifacts | Not affected | ||
| Red Hat OpenShift Container Platform 4 | openshift4/ose-hyperkube-rhel9 | Not affected | ||
| Red Hat OpenShift Container Platform 4 | openshift4/ose-hypershift | Not affected | ||
| Red Hat OpenShift Container Platform 4 | openshift4/ose-kube-proxy | Not affected | ||
| Red Hat OpenShift Container Platform 4 | openshift4/ose-tests | Not affected | ||
| Red Hat OpenShift Container Platform 4 | openshift-enterprise-node-container | Not affected | ||
| Red Hat OpenShift Container Platform 4 | source-to-image-container | Not affected | ||
| Red Hat OpenShift Container Platform 4 | windows-machine-config-operator | Not affected | ||
| Red Hat Quay 3 | quay-operator | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname, constructed with an empty first argument in an ioutil.TempDir call.
util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname, constructed with an empty first argument in an ioutil.TempDir call.
util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 c ...
EPSS
5.3 Medium
CVSS3