Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseOPENSUSE-SU-2014:1596-1
HistoryDec 08, 2014 - 5:07 p.m.

Security update for docker (important)

2014-12-0817:07:52
lists.opensuse.org
8

0.09 Low

EPSS

Percentile

94.6%

JSON

docker was updated to version 1.3.2 to fix two security issues.

These security issues were fixed:

  • Symbolic and hardlink issues leading to privilege escalation
    (CVE-2014-6407).
  • Potential container escalation (CVE-2014-6408).

There non-security issues were fixed:

  • Fix deadlock in docker ps -f exited=1
  • Fix a bug when --volumes-from references a container that failed to start
  • –insecure-registry now accepts CIDR notation such as 10.1.0.0/16
  • Private registries whose IPs fall in the 127.0.0.0/8 range do no need
    the --insecure-registry flag
  • Skip the experimental registry v2 API when mirroring is enabled
  • Fixed minor packaging issues.

Related

nessus 4
openvas 8
amazon 1
fedora 2
oraclelinux 1
securityvulns 1
prion 3
github 2
cvelist 2
ubuntucve 2
cve 3
osv 2
nvd 3
veracode 2
debiancve 2
cbl_mariner 1
redhatcve 1
nessus
nessus
openSUSE Security Update : docker (openSUSE-SU-2014:1596-1)
2014-12-09 00:00:00
Oracle Linux 6 / 7 : docker (ELSA-2014-3095)
2014-12-06 00:00:00
Fedora 21 : docker-io-1.3.2-2.fc21 (2014-15779)
2014-12-04 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2014-454)
2015-09-08 00:00:00
Oracle: Security Advisory (ELSA-2014-3095)
2015-10-06 00:00:00
Fedora Update for docker-io FEDORA-2014-15779
2015-01-05 00:00:00
amazon
amazon
Critical: docker
2014-11-25 12:22:00
fedora
fedora
[SECURITY] Fedora 21 Update: docker-io-1.3.2-2.fc21
2014-12-03 17:16:16
[SECURITY] Fedora 20 Update: docker-io-1.4.1-6.fc20
2015-01-26 02:35:37
oraclelinux
oraclelinux
docker security and bug fix update
2014-12-05 00:00:00
securityvulns
securityvulns
Docker 1.3.2 - Security Advisory [24 Nov 2014]
2014-12-01 00:00:00
prion
prion
Design/Logic Flaw
2014-12-12 15:59:00
Hardcoded credentials
2014-12-12 15:59:00
Design/Logic Flaw
2014-11-25 20:59:00
github
github
Access Restriction Bypass in Docker
2022-02-15 01:57:18
Arbitrary Code Execution in Docker
2022-02-15 00:41:12
cvelist
cvelist
CVE-2014-6408
2014-12-12 15:00:00
CVE-2014-6407
2014-12-12 15:00:00
ubuntucve
ubuntucve
CVE-2014-6408
2014-12-12 00:00:00
CVE-2014-6407
2014-12-12 00:00:00
cve
cve
CVE-2014-6407
2014-12-12 15:59:04
CVE-2014-6408
2014-12-12 15:59:06
CVE-2014-3605
2014-11-25 20:59:00
osv
osv
Access Restriction Bypass in Docker
2022-02-15 01:57:18
Arbitrary Code Execution in Docker
2022-02-15 00:41:12
nvd
nvd
CVE-2014-6408
2014-12-12 15:59:06
CVE-2014-6407
2014-12-12 15:59:04
CVE-2014-3605
2014-11-25 20:59:00
veracode
veracode
Container Bypass
2017-05-03 08:59:15
Remote Code Execution (RCE)
2017-05-03 07:48:05
debiancve
debiancve
CVE-2014-6408
2014-12-12 15:59:06
CVE-2014-6407
2014-12-12 15:59:04
cbl_mariner
cbl_mariner
CVE-2014-6407 affecting package moby-buildx 0.4.1-3
2021-07-08 21:56:42
redhatcve
redhatcve
CVE-2014-3605
2020-02-11 05:14:18

0.09 Low

EPSS

Percentile

94.6%

JSON
Related for OPENSUSE-SU-2014:1596-1
nessus4openvas8amazon1fedora2oraclelinux1securityvulns1prion3github2cvelist2ubuntucve2cve3osv2nvd3veracode2debiancve2cbl_mariner1redhatcve1