Описание
In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 20.10.7-0ubuntu1~18.04.1 |
| devel | not-affected | 20.10.7-0ubuntu1 |
| esm-apps/bionic | released | 20.10.7-0ubuntu1~18.04.1 |
| esm-apps/focal | released | 20.10.7-0ubuntu1~20.04.1 |
| esm-apps/jammy | not-affected | 20.10.7-0ubuntu1 |
| esm-apps/noble | not-affected | 20.10.7-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/xenial | needed | |
| focal | released | 20.10.7-0ubuntu1~20.04.1 |
| groovy | ignored | end of life |
Показывать по
Ссылки на источники
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing.
In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing.
In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in ...
moby docker daemon crash during image pull of malicious image
4.3 Medium
CVSS2
6.5 Medium
CVSS3