191 matches found
CVE-2024-51744 affecting package moby-engine for versions less than 25.0.3-13
CVE-2024-51744 affecting package moby-engine for versions less than 25.0.3-13. A patched version of the package is available...
CVE-2024-51744 affecting package moby-engine for versions less than 24.0.9-17
CVE-2024-51744 affecting package moby-engine for versions less than 24.0.9-17. A patched version of the package is available...
CVE-2025-30204 affecting package moby-engine for versions less than 24.0.9-16
CVE-2025-30204 affecting package moby-engine for versions less than 24.0.9-16. A patched version of the package is available...
CVE-2025-30204 affecting package moby-engine for versions less than 25.0.3-12
CVE-2025-30204 affecting package moby-engine for versions less than 25.0.3-12. A patched version of the package is available...
Azure Linux 3.0 Security Update: moby-engine (CVE-2024-29018)
The version of moby-engine installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-29018 advisory. - Moby is an open source container framework that is a key component of Docker Engine, Docker Desktop, an...
CVE-2025-22869 affecting package moby-engine for versions less than 25.0.3-11
CVE-2025-22869 affecting package moby-engine for versions less than 25.0.3-11. A patched version of the package is available...
CVE-2025-22868 affecting package moby-engine for versions less than 25.0.3-11
CVE-2025-22868 affecting package moby-engine for versions less than 25.0.3-11. A patched version of the package is available...
CVE-2025-22868 affecting package moby-engine for versions less than 24.0.9-15
CVE-2025-22868 affecting package moby-engine for versions less than 24.0.9-15. A patched version of the package is available...
CVE-2025-22869 affecting package moby-engine for versions less than 24.0.9-15
CVE-2025-22869 affecting package moby-engine for versions less than 24.0.9-15. A patched version of the package is available...
AZL-59217 CVE-2025-30204 affecting package moby-engine for versions less than 24.0.9-16
golang-jwt is a Go implementation of JSON Web Tokens. Starting in version 3.2.0 and prior to versions 5.2.2 and 4.5.2, the function parse.ParseUnverified splits via a call to strings.Split its argument which is untrusted data on periods. As a result, in the face of a malicious request whose...
AZL-59180 CVE-2025-30204 affecting package moby-engine for versions less than 25.0.3-12
golang-jwt is a Go implementation of JSON Web Tokens. Starting in version 3.2.0 and prior to versions 5.2.2 and 4.5.2, the function parse.ParseUnverified splits via a call to strings.Split its argument which is untrusted data on periods. As a result, in the face of a malicious request whose...
AZL-57363 CVE-2025-22868 affecting package moby-engine for versions less than 25.0.3-11
An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing...
AZL-57473 CVE-2025-22869 affecting package moby-engine for versions less than 24.0.9-15
SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...
AZL-57449 CVE-2025-22868 affecting package moby-engine for versions less than 24.0.9-15
An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing...
AZL-57401 CVE-2025-22869 affecting package moby-engine for versions less than 25.0.3-11
SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...
CVE-2023-45288 affecting package moby-engine for versions less than 25.0.3-10
CVE-2023-45288 affecting package moby-engine for versions less than 25.0.3-10. A patched version of the package is available...
CVE-2024-23650 affecting package moby-engine for versions less than 24.0.9-14
CVE-2024-23650 affecting package moby-engine for versions less than 24.0.9-14. A patched version of the package is available...
Azure Linux 3.0 Security Update: moby-engine (CVE-2024-41110)
The version of moby-engine installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41110 advisory. - Moby is an open-source project created by Docker for software containerization. A security vulnerabilit...
Azure Linux 3.0 Security Update: golang / ig / moby-engine / skopeo (CVE-2022-2879)
The version of golang / ig / moby-engine / skopeo installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-2879 advisory. - Reader.Read does not set a limit on the maximum size of file headers. A malicious...
Azure Linux 3.0 Security Update: application-gateway-kubernetes-ingress / cf-cli / cri-o / csi-driver-lvm / golang / keda / moby-engine / node-problem-detector (CVE-2021-44716)
The version of application-gateway-kubernetes-ingress / cf-cli / cri-o / csi-driver-lvm / golang / keda / moby-engine / node-problem-detector installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-44716...