RSS   Vulnerabilities for 'Libcontainer'   RSS

2015-05-18
 
CVE-2015-3629

CWE-59
 

 
Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization ("mount namespace breakout") and write to arbitrary file on the host system via a symlink attack in an image when respawning a container.

 
 
CVE-2015-3627

CWE-59
 

 
Libcontainer and Docker Engine before 1.6.1 opens the file-descriptor passed to the pid-1 process before performing the chroot, which allows local users to gain privileges via a symlink attack in an image.

 

 >>> Vendor: Docker 23 Products
Desktop
Engine
Memcached
Haproxy
Docker
Docker-py
Rabbitmq
Libcontainer
Docker registry
Adminer
Registry
Credential helpers
Command line interface
Cs engine
Docker desktop
Notary docker image
Regisry
Composer
DOCS
Ghost alpine docker image
Haproxy docker image
Rabbitmq docker image
Memcached docker image


Copyright 2024, cxsecurity.com

 

Back to Top