Lucene search
RedHatRHSA-2016:2634HistoryNov 03, 2016 - 4:46 p.m.
(RHSA-2016:2634) Moderate: docker security and bug fix update
2016-11-0316:46:17
access.redhat.com
14
0.0004 Low
EPSS
Percentile
5.1%
Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that will run virtually anywhere.
Security Fix(es):
- It was found that Docker would launch containers under the specified UID instead of a username. An attacker able to launch a container could use this flaw to escalate their privileges to root within the launched container. (CVE-2016-3697)
This issue was discovered by Mrunal Patel (Red Hat).
Bug Fix(es):
- This update also provides various bug fixes and enhancements. Users are advised to upgrade to these updated packages.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | x86_64 | docker-lvm-plugin | < 1.10.3-57.el7 | docker-lvm-plugin-1.10.3-57.el7.x86_64.rpm |
| RedHat | 7 | x86_64 | docker-common | < 1.10.3-57.el7 | docker-common-1.10.3-57.el7.x86_64.rpm |
| RedHat | 7 | x86_64 | docker-v1.10-migrator | < 1.10.3-57.el7 | docker-v1.10-migrator-1.10.3-57.el7.x86_64.rpm |
| RedHat | 7 | x86_64 | docker-novolume-plugin | < 1.10.3-57.el7 | docker-novolume-plugin-1.10.3-57.el7.x86_64.rpm |
| RedHat | 7 | x86_64 | docker-selinux | < 1.10.3-57.el7 | docker-selinux-1.10.3-57.el7.x86_64.rpm |
| RedHat | 7 | x86_64 | docker-rhel-push-plugin | < 1.10.3-57.el7 | docker-rhel-push-plugin-1.10.3-57.el7.x86_64.rpm |
| RedHat | 7 | x86_64 | docker-logrotate | < 1.10.3-57.el7 | docker-logrotate-1.10.3-57.el7.x86_64.rpm |
| RedHat | 7 | x86_64 | docker | < 1.10.3-57.el7 | docker-1.10.3-57.el7.x86_64.rpm |
Related
fedora
fedora
[SECURITY] Fedora 24 Update: docker-1.10.3-15.gitf476348.fc24
2016-06-18 19:40:15
[SECURITY] Fedora 23 Update: docker-1.10.3-24.gitf476348.fc23
2016-06-10 02:28:43
mageia
mageia
Updated docker package fixes CVE-2016-3697
2016-05-29 16:55:26
osv
osv
Privilege escalation in github.com/opencontainers/runc
2021-04-14 20:04:52
Privilege Elevation in runc
2021-12-20 18:21:34
CVE-2018-9862
2018-04-09 16:29:00
nvd
nvd
CVE-2016-3697
2016-06-01 20:59:06
CVE-2018-9862
2018-04-09 16:29:00
github
github
Privilege Elevation in runc
2021-12-20 18:21:34
debiancve
debiancve
CVE-2016-3697
2016-06-01 20:59:06
nessus
nessus
Fedora 23 : 2:docker (2016-6a0d540088)
2016-07-14 00:00:00
EulerOS 2.0 SP1 : docker (EulerOS-SA-2016-1016)
2017-05-01 00:00:00
RHEL 7 : docker (RHSA-2016:2634)
2016-11-07 00:00:00
redhat
redhat
(RHSA-2016:1034) Moderate: docker security, bug fix, and enhancement update
2016-05-12 14:58:50
oraclelinux
oraclelinux
docker-engine security update
2016-05-20 00:00:00
openvas
openvas
Fedora Update for docker FEDORA-2016-6a0d540088
2016-06-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:1159-1)
2021-06-09 00:00:00
Mageia: Security Advisory (MGASA-2016-0209)
2022-01-28 00:00:00
veracode
veracode
Privilege Escalation
2019-01-15 09:11:32
Privilege Escalation
2017-05-03 06:50:10
prion
prion
Default credentials
2016-06-01 20:59:00
Code injection
2018-04-09 16:29:00
gentoo
gentoo
Docker: Privilege escalation
2016-12-11 00:00:00
ubuntucve
ubuntucve
CVE-2016-3697
2016-06-01 00:00:00
cbl_mariner
cbl_mariner
CVE-2016-3697 affecting package moby-buildx 0.4.1-3
2021-07-08 21:56:42
cvelist
cvelist
CVE-2016-3697
2016-06-01 20:00:00
CVE-2018-9862
2018-04-09 16:00:00
cve
cve
CVE-2016-3697
2016-06-01 20:59:06
CVE-2018-9862
2018-04-09 16:29:00
kaspersky
kaspersky
KLA10820 Privilege escalation vulnerability in Docker
2016-06-01 00:00:00
ibm
ibm