Lucene search
K

17 matches found

OPENSUSE Linux
OPENSUSE Linux
added 2025/10/01 12:0 a.m.3 views

docker-stable-24.0.9_ce-15.1 on GA media (moderate)

docker-stable-24.0.9ce-15.1 on GA media Announcement ID: openSUSE-SU-2025:15589-1 Rating: moderate Cross-References: CVE-2014-3499 CVE-2014-5277 CVE-2014-6407 CVE-2014-6408 CVE-2014-8178 CVE-2014-8179 CVE-2014-9356 CVE-2014-9357 CVE-2014-9358 CVE-2015-3627 CVE-2015-3629 CVE-2015-3630 CVE-2015-363...

8.3CVSS8.4AI score0.66252EPSS
Exploits11
OpenVAS
OpenVAS
added 2021/09/08 12:0 a.m.24 views

Docker < 1.3.2 Privilege Escalation Vulnerability

Docker is prone to a privilege escalation vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

7.5CVSS8.2AI score0.04909EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2021/07/08 9:56 p.m.39 views

CVE-2014-6407 affecting package moby-buildx 0.4.1-3

CVE-2014-6407 affecting package moby-buildx 0.4.1-3. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.4AI score0.04909EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2020/02/11 5:14 a.m.29 views

CVE-2014-3605

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-6407. Reason: This candidate is a reservation duplicate of CVE-2014-6407. Notes: All CVE users should reference CVE-2014-6407 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

7.6CVSS8.1AI score0.04909EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.29 views

Oracle: Security Advisory (ELSA-2014-3095)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.04909EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2015/09/18 12:0 a.m.34 views

openSUSE: Security Advisory for docker (openSUSE-SU-2014:1596-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.04909EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.21 views

Amazon Linux: Security Advisory (ALAS-2014-454)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.04909EPSS
Exploits0References2
OSV
OSV
added 2014/12/12 3:59 p.m.7 views

CVE-2014-6407

Docker before 1.3.2 allows remote attackers to write to arbitrary files and execute arbitrary code via a 1 symlink or 2 hard link attack in an image archive in a a pull or b load operation...

7.3AI score
Exploits0References6
CVE
CVE
added 2014/12/12 3:0 p.m.81 views

CVE-2014-6407

CVE-2014-6407 affects Docker up to 1.3.2, where attackers could write arbitrary files and execute code via a symlink or hard link attack in an image archive during pull or load. Evidence from connected docs shows fixed in the openSUSE/SUSE docker 1.3.2 update (docker-docker-stable forks) addressi...

7.5CVSS8.2AI score0.04909EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/12/09 12:0 a.m.28 views

openSUSE Security Update : docker (openSUSE-SU-2014:1596-1)

docker was updated to version 1.3.2 to fix two security issues. These security issues were fixed : - Symbolic and hardlink issues leading to privilege escalation CVE-2014-6407. - Potential container escalation CVE-2014-6408. There non-security issues were fixed : - Fix deadlock in docker ps -f...

7.5CVSS7.2AI score0.04909EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2014/12/08 5:7 p.m.29 views

Security update for docker (important)

docker was updated to version 1.3.2 to fix two security issues. These security issues were fixed: - Symbolic and hardlink issues leading to privilege escalation CVE-2014-6407. - Potential container escalation CVE-2014-6408. There non-security issues were fixed: - Fix deadlock in docker ps -f...

7.5CVSS0.9AI score0.04909EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2014/12/05 12:0 a.m.35 views

docker security and bug fix update

1.3.2-1.0.1 - Rename requirement of docker-io-pkg-devel in %package devel as docker-pkg-devel - Restore SysV init scripts for Oracle Linux 6 - Require Oracle Unbreakable Enterprise Kernel Release 3 or higher - Rename as docker. - Re-enable btrfs graphdriver support 1.3.2-1 - Update source to 1.3....

7.5CVSS0.2AI score0.04909EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/12/04 12:0 a.m.40 views

Fedora 21 : docker-io-1.3.2-2.fc21 (2014-15779)

Security fix for CVE-2014-6407, CVE-2014-6408 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

7.5CVSS7.2AI score0.04909EPSS
Exploits0References5
securityvulns
securityvulns
added 2014/12/01 12:0 a.m.68 views

Docker 1.3.2 - Security Advisory [24 Nov 2014]

Today, we are releasing Docker 1.3.2 in order to address two critical security issues. This release also includes several bugfixes, including changes to the insecure-registry option. Below are CVE descriptions for the vulnerabilities addressed in this release. Docker 1.3.2 is available immediatel...

7.5CVSS1.1AI score0.04909EPSS
Exploits0
Prion
Prion
added 2014/11/25 8:59 p.m.14 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-6407. Reason: This candidate is a reservation duplicate of CVE-2014-6407. Notes: All CVE users should reference CVE-2014-6407 instead of this candidate. All references and descriptions in this candidate have been removed to...

6.6AI score0.04909EPSS
Exploits0
Amazon
Amazon
added 2014/11/25 12:0 a.m.41 views

Critical: docker

Issue Overview: Docker versions 1.3.0 through 1.3.1 allowed security options to be applied to images, allowing images to modify the default run profile of containers executing these images. This vulnerability could allow a malicious image creator to loosen the restrictions applied to a container'...

7.5CVSS8AI score0.04909EPSS
Exploits0
CVE
CVE
added 1976/01/01 12:0 a.m.46 views

CVE-2014-3605

CVE-2014-3605 is a rejected/not used CVE and does not represent an active vulnerability entry.

8.4AI score
Exploits0
Rows per page
Query Builder