github.com/moby/moby is vulnerable to image cache poisoning. The vulnerability exists as the image layers were not globally unique, allowing for unintended images to be uploaded or downloaded.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/moby/moby | eq | HEAD | |
github.com/moby/moby | le | 1.8.2 | |
github.com/moby/moby | eq | HEAD | |
github.com/moby/moby | le | 1.8.2 |
lists.opensuse.org/opensuse-security-announce/2015-10/msg00014.html
lists.opensuse.org/opensuse-updates/2015-10/msg00036.html
github.com/docker/docker/blob/master/CHANGELOG.md#183-2015-10-12
github.com/moby/moby/commit/9098628b2901ae8585ba4c66ee6e14759d2119da
groups.google.com/forum/#!msg/docker-dev/bWVVtLNbFy8/UaefOqMOCAAJ
groups.google.com/forum/#%21msg/docker-dev/bWVVtLNbFy8/UaefOqMOCAAJ
www.docker.com/legal/docker-cve-database