EUVD-2022-6933

Malicious code in bioql PyPI...

MGASA-2023-0245 Updated docker-containerd packages fix security vulnerability

Memory leak. CVE-2022-23471 Denial of service with maliciously crafted image with a large file CVE-2023-25153 Security bypass due to improper supplementary group handling. CVE-2023-25173...

SUSE-SU-2023:0795-2 Security update for docker

This update for docker fixes the following issues: Docker was updated to 20.10.23-ce. See upstream changelog at https://docs.docker.com/engine/release-notes/201023 Docker was updated to 20.10.21-ce bsc1206065 See upstream changelog at https://docs.docker.com/engine/release-notes/201021 Security...

Amazon Linux 2 : docker (ALASDOCKER-2023-022)

The version of docker installed on the remote host is prior to 20.10.23-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2023-022 advisory. A flaw was found in Moby. This flaw allows an attacker to bypass primary group restrictions due to a flaw in the...

Design/Logic Flaw

containerd is an open source container runtime. A bug was found in containerd prior to versions 1.6.18 and 1.5.18 where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group access, they may be ab...

SUSE CVE-2018-7169

An issue was discovered in shadow 4.5. newgidmap in shadow-utils is setuid and allows an unprivileged user to be placed in a user namespace where setgroups2 is permitted. This allows an attacker to remove themselves from a supplementary group, which may allow access to certain filesystem paths if...

MGASA-2023-0009 Updated docker packages fix security vulnerability

Server side request forgery CVE-2022-29153 Bypass primary group restrictions due to a flaw in the supplementary group access setup CVE-2022-36109 Imported Nodes/Services Information leak in moby-engine. CVE-2022-3920...

CVE-2022-36109

A flaw was found in Moby. This flaw allows an attacker to bypass primary group restrictions due to a flaw in the supplementary group access setup...

CVE-2022-36109 Moby vulnerability relating to supplementary group permissions

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use...

CVE-2022-36109

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use...

CVE-2022-36109 Moby vulnerability relating to supplementary group permissions

Moby is an open-source project created by Docker to enable software containerization. A bug was found in Moby Docker Engine where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use...

CVE-2018-7169

An issue was discovered in newgidmap, in shadow-utils, that allows an unprivileged user to be placed in a user namespace where setgroups is permitted. An attacker could use this flaw to remove himself from a supplementary group, which may allow access to certain filesystem paths, if the...

UBUNTU-CVE-2014-9091

Icecast before 2.4.0 does not change the supplementary group privileges when is configured, which allows local users to gain privileges via unspecified vectors...

CVE-2012-4442

Monkey HTTP Daemon 0.9.3 retains the supplementary group IDs of the root account during operations with a non-root effective UID, which might allow local users to bypass intended file-read restrictions by leveraging a race condition in a file-permission check...

Fedora 17 : arpwatch-2.1a15-20.fc17 (2012-8677)

with '-u' fix supplementary group list 825328 CVE-2012-2653 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

CVE-2008-5397

Tor before 0.2.0.32 does not properly process the 1 User and 2 Group configuration options, which might allow local users to gain privileges by leveraging unintended supplementary group memberships of the Tor process...

Default configuration

Tor before 0.2.0.32 does not properly process the 1 User and 2 Group configuration options, which might allow local users to gain privileges by leveraging unintended supplementary group memberships of the Tor process...

CVE-2008-5397

Tor before 0.2.0.32 does not properly process the 1 User and 2 Group configuration options, which might allow local users to gain privileges by leveraging unintended supplementary group memberships of the Tor process...

CVE-2008-5397

Tor before 0.2.0.32 does not properly process the 1 User and 2 Group configuration options, which might allow local users to gain privileges by leveraging unintended supplementary group memberships of the Tor process...