Lucene search
Redhat.comRH:CVE-2020-14300HistoryJun 23, 2020 - 7:26 p.m.
CVE-2020-14300
2020-06-2319:26:46
redhat.com
access.redhat.com
16
0.001 Low
EPSS
Percentile
28.8%
The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2016-9962, which was previously fixed via RHSA-2017:0116. This issue could allow a malicious or compromised container to compromise the container host and other containers running on the same host.
Mitigation
This issue is mitigated on Red Hat Enterprise Linux 7 if SELinux is in enforcing mode, which prevents containers from escaping to the host machine.
Related
veracode
veracode
Information Disclosure
2020-06-24 03:08:12
Information Disclosure
2017-05-02 07:00:10
Information Disclosure
2019-01-15 09:15:26
cve
cve
CVE-2020-14300
2020-07-13 22:15:12
CVE-2016-9962
2017-01-31 22:59:01
osv
osv
CVE-2020-14300
2020-07-13 22:15:12
Information Exposure in RunC
2021-12-20 18:21:43
nvd
nvd
CVE-2020-14300
2020-07-13 22:15:12
CVE-2016-9962
2017-01-31 22:59:01
debiancve
debiancve
CVE-2020-14300
2020-07-13 22:15:12
CVE-2016-9962
2017-01-31 22:59:01
ubuntucve
ubuntucve
CVE-2020-14300
2020-07-13 00:00:00
CVE-2016-9962
2017-01-31 00:00:00
cvelist
cvelist
CVE-2020-14300
2020-07-13 21:02:24
CVE-2016-9962
2017-01-31 22:00:00
prion
prion
Code injection
2020-07-13 22:15:00
Design/Logic Flaw
2017-01-31 22:59:00
redhat
redhat
(RHSA-2020:2653) Important: docker security update
2020-06-23 19:31:12
(RHSA-2017:0123) Moderate: docker-latest security, bug fix, and enhancement update
2017-01-17 20:35:03
(RHSA-2017:0127) Moderate: runc security and bug fix update
2017-01-17 20:35:12
openvas
openvas
Fedora Update for docker-latest FEDORA-2017-fcd02e2c2d
2017-01-16 00:00:00
Mageia: Security Advisory (MGASA-2017-0189)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1964-1)
2021-06-09 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: docker-latest-1.12.6-2.git51ef5a8.fc25
2017-01-15 07:52:30
[SECURITY] Fedora 24 Update: docker-latest-1.12.6-1.git51ef5a8.fc24
2017-01-20 18:20:16
[SECURITY] Fedora 25 Update: docker-1.12.6-3.git51ef5a8.fc25
2017-01-13 02:25:44
altlinux
altlinux
Security fix for the ALT Linux 8 package runc version 1.0.0-alt2.gitc91b5be
2017-01-23 00:00:00
Security fix for the ALT Linux 10 package runc version 1.0.0-alt2.gitc91b5be
2017-01-23 00:00:00
nessus
nessus
GLSA-201701-34 : runC: Privilege escalation
2017-01-13 00:00:00
Fedora 25 : 1:runc (2017-0200646669)
2017-01-19 00:00:00
Fedora 25 : 2:docker-latest (2017-fcd02e2c2d)
2017-01-16 00:00:00
redhatcve
redhatcve
CVE-2016-9962
2017-01-13 20:41:59
ibm
ibm
Security Bulletin: Vulnerability identified in docker for Red Hat Enterprise Linux
2020-08-18 15:40:45
Security Bulletin: Container Environment Vulnerabilities Affect IBM Secure Proxy (CVE-2020-14298, CVE-2020-14300)
2021-09-08 22:04:43
Security Bulletin: Vulnerabilities in docker affect PowerKVM
2018-09-26 17:55:02
archlinux
archlinux
[ASA-201805-11] runc: privilege escalation
2018-05-16 00:00:00
[ASA-201701-19] docker: privilege escalation
2017-01-13 00:00:00
threatpost
threatpost
Docker Patches Privilege Escalation Vulnerability
2017-01-18 14:26:35
gentoo
gentoo
runC: Privilege escalation
2017-01-12 00:00:00
amazon
amazon
Important: docker
2017-01-10 18:00:00
mageia
mageia
Updated docker packages fix security vulnerability
2017-06-28 13:01:20
github
github
Information Exposure in RunC
2021-12-20 18:21:43
oraclelinux
oraclelinux
docker-engine docker-engine-selinux security and bugfix update
2017-01-13 00:00:00
runc security update
2019-02-11 00:00:00
container-tools:1.0 security update
2021-03-05 00:00:00