2 matches found
CVE-2017-14388
Summary: CVE-2017-14388 affects Cloud Foundry GrootFS 0.3.x prior to 0.30.0, where GrootFS does not validate DiffIDs, allowing a specially crafted image to poison the grootfs volume cache. Affected software: GrootFS (root filesystem component) within Cloud Foundry, specifically releases in the 0....
CVE-2017-14388: GrootFS doesn't validate DiffIDs | Cloud Foundry
Severity High Vendor Cloud Foundry Foundation Affected Cloud Foundry Products and Versions GrootFS release 0.3.x versions prior to 0.30.0 Description GrootFS does not validate DiffIDs, allowing specially crafted images to poison the grootfs volume cache. For example, this could allow an attacker ...