Lucene search
K

801 matches found

Amazon
Amazon
added 2021/11/18 12:0 a.m.9 views

Medium: docker

Issue Overview: Lack of content verification in Docker-CE Also known as Moby versions 1.12.6-0, 1.10.3, 17.03.0, 17.03.1, 17.03.2, 17.06.0, 17.06.1, 17.06.2, 17.09.0, and earlier allows a remote attacker to cause a Denial of Service via a crafted image layer payload, aka gzip bombing...

6.5CVSS6.8AI score0.0247EPSS
Exploits0
Amazon
Amazon
added 2021/11/18 12:0 a.m.8 views

Medium: docker

Issue Overview: The default OCI Linux spec in oci/defaultslinux.go in Docker/Moby, from 1.11 to current, does not block /proc/acpi pathnames. The flaw allows an attacker to modify host's hardware like enabling/disabling Bluetooth or turning up/down keyboard brightness. CVE-2018-10892 Affected...

6.3CVSS7AI score0.01135EPSS
Exploits0
Amazon
Amazon
added 2021/11/18 12:0 a.m.30 views

Important: docker

Issue Overview: A flaw was discovered in the API endpoint behind the 'docker cp' command. The endpoint is vulnerable to a Time Of Check to Time Of Use TOCTOU vulnerability in the way it handles symbolic links inside a container. An attacker who has compromised an existing container can cause...

7.5CVSS7AI score0.03398EPSS
Exploits2
Amazon
Amazon
added 2021/11/18 12:0 a.m.4 views

Medium: containerd

Issue Overview: A flaw was found in containerd. Access controls for the shim's API socket verified that a connecting process had an effective UID of 0, but otherwise did not restrict access to the abstract Unix domain socket. This could allow malicious containers running in the same network...

5.2CVSS6.8AI score0.03236EPSS
Exploits4
Amazon
Amazon
added 2021/11/18 12:0 a.m.8 views

Important: runc

Issue Overview: runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfslinux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory. CVE-2019-16884 A flaw was...

7.5CVSS6.8AI score0.04409EPSS
Exploits1
Amazon
Amazon
added 2021/11/18 12:0 a.m.11 views

Important: runc

Issue Overview: runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfslinux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory. CVE-2019-16884 A flaw was...

7.5CVSS6.8AI score0.04409EPSS
Exploits1
Amazon
Amazon
added 2021/11/18 12:0 a.m.3 views

Medium: containerd, docker

Issue Overview: In the OCI Distribution Specification version 1.0.0 and prior and in the OCI Image Specification version 1.0.1 and prior, manifest and index documents are ambiguous without an accompanying Content-Type HTTP header. Versions of Moby Docker Engine prior to 20.10.11 and versions of...

5CVSS7AI score0.02085EPSS
Exploits0
Amazon
Amazon
added 2021/11/18 12:0 a.m.3 views

Medium: docker

Issue Overview: A flaw was found in the userns-remap feature of Docker. The root user in the remapped namespace can modify files under /var/lib/docker/, leading to possible privilege escalation to the root user in the host. The highest threat from this vulnerability is to data integrity...

6.8CVSS7AI score0.03287EPSS
Exploits0
Amazon
Amazon
added 2021/11/12 12:0 a.m.5 views

Important: kernel-livepatch-5.10.62-55.141

Issue Overview: No CVE associated with this advisory Affected Packages: kernel-livepatch-5.10.62-55.141 Issue Correction: Please ensure you have live patching enabled. Run yum update kernel-livepatch-5.10.62-55.141 or yum update --advisory ALAS2LIVEPATCH-2021-068 to update your system. New...

7.8CVSS7AI score0.01692EPSS
Exploits2
Amazon
Amazon
added 2021/09/21 12:0 a.m.6 views

Important: kernel-livepatch-4.14.241-184.433

Issue Overview: No CVE associated with this advisory Affected Packages: kernel-livepatch-4.14.241-184.433 Issue Correction: Please ensure you have live patching enabled. Run yum update kernel-livepatch-4.14.241-184.433 or yum update --advisory ALAS2LIVEPATCH-2021-063 to update your system. New...

7CVSS7AI score0.00303EPSS
Exploits0
Amazon
Amazon
added 2021/09/21 12:0 a.m.9 views

Important: kernel-livepatch-4.14.243-185.433

Issue Overview: No CVE associated with this advisory Affected Packages: kernel-livepatch-4.14.243-185.433 Issue Correction: Please ensure you have live patching enabled. Run yum update kernel-livepatch-4.14.243-185.433 or yum update --advisory ALAS2LIVEPATCH-2021-062 to update your system. New...

7CVSS7AI score0.00303EPSS
Exploits0
Amazon
Amazon
added 2021/09/21 12:0 a.m.3 views

Important: kernel-livepatch-4.14.232-177.418

Issue Overview: No CVE associated with this advisory Affected Packages: kernel-livepatch-4.14.232-177.418 Issue Correction: Please ensure you have live patching enabled. Run yum update kernel-livepatch-4.14.232-177.418 or yum update --advisory ALAS2LIVEPATCH-2021-060 to update your system. New...

7CVSS7AI score0.00303EPSS
Exploits0
Amazon
Amazon
added 2021/07/21 12:0 a.m.4 views

Important: kernel-livepatch-4.14.232-176.381

Issue Overview: No CVE associated with this advisory Affected Packages: kernel-livepatch-4.14.232-176.381 Issue Correction: Please ensure you have live patching enabled. Run yum update kernel-livepatch-4.14.232-176.381 or yum update --advisory ALAS2LIVEPATCH-2021-054 to update your system. New...

7.8CVSS7AI score0.00377EPSS
Exploits0
Amazon
Amazon
added 2021/07/21 12:0 a.m.4 views

Important: kernel-livepatch-4.14.232-177.418

Issue Overview: No CVE associated with this advisory Affected Packages: kernel-livepatch-4.14.232-177.418 Issue Correction: Please ensure you have live patching enabled. Run yum update kernel-livepatch-4.14.232-177.418 or yum update --advisory ALAS2LIVEPATCH-2021-059 to update your system. New...

7.8CVSS7AI score0.09808EPSS
Exploits6
Amazon
Amazon
added 2021/07/21 12:0 a.m.4 views

Important: kernel-livepatch-4.14.232-176.381

Issue Overview: No CVE associated with this advisory Affected Packages: kernel-livepatch-4.14.232-176.381 Issue Correction: Please ensure you have live patching enabled. Run yum update kernel-livepatch-4.14.232-176.381 or yum update --advisory ALAS2LIVEPATCH-2021-056 to update your system. New...

7.8CVSS7AI score0.09808EPSS
Exploits6
Amazon
Amazon
added 2021/07/21 12:0 a.m.4 views

Important: kernel-livepatch-4.14.231-173.360

Issue Overview: No CVE associated with this advisory Affected Packages: kernel-livepatch-4.14.231-173.360 Issue Correction: Please ensure you have live patching enabled. Run yum update kernel-livepatch-4.14.231-173.360 or yum update --advisory ALAS2LIVEPATCH-2021-058 to update your system. New...

7.8CVSS7AI score0.09808EPSS
Exploits6
Amazon
Amazon
added 2021/05/04 12:0 a.m.5 views

Low: kernel-livepatch-4.14.219-161.340

Issue Overview: A low severity issue was found in the Nitro Enclaves Linux kernel driver that could lead to local privilege escalation. The issue does not break the isolation or security of what is running inside the enclave as the Nitro Enclave's security model already excludes the instance...

6.7AI score
Exploits0
Amazon
Amazon
added 2021/05/04 12:0 a.m.3 views

Low: kernel-livepatch-4.14.225-168.357

Issue Overview: A low severity issue was found in the Nitro Enclaves Linux kernel driver that could lead to local privilege escalation. The issue does not break the isolation or security of what is running inside the enclave as the Nitro Enclave's security model already excludes the instance...

6.7AI score
Exploits0
Amazon
Amazon
added 2020/09/08 12:0 a.m.2 views

Important: kernel-livepatch-4.14.186-146.268

Issue Overview: An issue has been reported in the Linux kernel's handling of raw sockets. This issue can be used locally to cause denial of service or local privilege escalation from unprivileged processes or from containers with the CAPNETRAW capability enabled. See Also:...

7.8CVSS6.6AI score0.01319EPSS
Exploits1
Amazon
Amazon
added 2020/06/03 12:0 a.m.4 views

Important: kernel-livepatch-4.14.171-136.231

Issue Overview: An issue was discovered in the Linux kernel before 5.6.5. There is a use-after-free in block/bfq-iosched.c related to bfqidleslicetimerbody.CVE-2020-12657 Affected Packages: kernel-livepatch-4.14.171-136.231 Issue Correction: Please ensure you have live patching enabled. Run yum...

7.8CVSS6.8AI score0.00711EPSS
Exploits0
Rows per page
Query Builder