Lucene search
GoogleOSV:CVE-2021-21285HistoryFeb 02, 2021 - 6:15 p.m.
CVE-2021-21285
2021-02-0218:15:12
Google
osv.dev
6
In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing.
| CPE | Name | Operator | Version |
|---|---|---|---|
| docker | eq | 19.03.13-beta2 | |
| docker | eq | 19.03.3-beta2 | |
| docker | eq | upstream/0.1.2 | |
| docker | eq | 0.6.6 | |
| docker | eq | 0.7.3 | |
| docker | eq | 19.03.2-beta1 | |
| docker | eq | 19.03.14 | |
| docker | eq | 19.03.3-beta1 | |
| docker | eq | 19.03.1 | |
| docker | eq | 19.03.6 |
References
docs.docker.com/engine/release-notes/#20103
github.com/moby/moby/commit/8d3179546e79065adefa67cc697c09d0ab137d30
github.com/moby/moby/releases/tag/v19.03.15
github.com/moby/moby/releases/tag/v20.10.3
github.com/moby/moby/security/advisories/GHSA-6fj5-m822-rqx8
security.gentoo.org/glsa/202107-23
security.netapp.com/advisory/ntap-20210226-0005/
www.debian.org/security/2021/dsa-4865
Related
redhatcve
redhatcve
CVE-2021-21285
2021-02-03 20:04:18
nessus
nessus
EulerOS 2.0 SP9 : docker-engine (EulerOS-SA-2021-1922)
2021-06-03 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-21285 affecting package moby-engine 19.03.15-2
2021-07-08 21:56:37
CVE-2021-21285 affecting package moby-cli 19.03.15-2
2021-07-08 21:57:06
CVE-2021-21285 affecting package moby-buildx 0.4.1-3
2021-07-08 21:56:42
osv
osv
moby docker daemon crash during image pull of malicious image
2024-01-31 23:16:46
docker.io - security update
2021-02-27 00:00:00
cve
cve
CVE-2021-21285
2021-02-02 18:15:12
ubuntucve
ubuntucve
CVE-2021-21285
2021-02-02 00:00:00
cvelist
cvelist
CVE-2021-21285 Docker daemon crash during image pull of malicious image
2021-02-02 17:55:16
github
github
moby docker daemon crash during image pull of malicious image
2024-01-31 23:16:46
debiancve
debiancve
CVE-2021-21285
2021-02-02 18:15:12
veracode
veracode
Denial Of Service (DoS)
2021-02-03 05:31:47
alpinelinux
alpinelinux
CVE-2021-21285
2021-02-02 18:15:12
openvas
openvas
Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2021-1869)
2021-05-19 00:00:00
Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2021-1896)
2021-05-19 00:00:00
Huawei EulerOS: Security Advisory for docker-engine (EulerOS-SA-2021-1943)
2021-06-07 00:00:00
prion
prion
Code injection
2021-02-02 18:15:00
nvd
nvd
CVE-2021-21285
2021-02-02 18:15:12
ibm
ibm
gentoo
gentoo
Docker: Multiple vulnerabilities
2021-07-10 00:00:00
archlinux
archlinux
[ASA-202102-12] docker: multiple issues
2021-02-06 00:00:00
amazon
amazon
Medium: docker
2021-11-11 20:21:00
suse
suse
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (important)
2021-02-12 00:00:00
Security update for containerd, docker, runc (important)
2021-06-16 00:00:00
Security update for containerd, docker, runc (important)
2021-07-10 00:00:00
debian
debian
[SECURITY] [DSA 4865-1] docker.io security update
2021-02-27 18:36:39
photon
photon
Critical Photon OS Security Update - PHSA-2021-0228
2021-04-30 00:00:00
Critical Photon OS Security Update - PHSA-2021-3.0-0228
2021-04-30 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0045
2023-07-05 00:00:00