Moderate severityNVD Advisory· Published May 18, 2015· Updated May 6, 2026

CVE-2015-3631

Description

Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules (LSM) and docker_t policies via an image that allows volumes to override files in /proc.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
github.com/docker/dockerGo	< 1.6.1	1.6.1

Affected products

Docker/Docker
cpe:2.3:a:docker:docker:*:*:*:*:*:*:*:*
Range: <=1.6

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/advisories/GHSA-v4h8-794j-g8mmghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2015-3631ghsaADVISORY
lists.opensuse.org/opensuse-updates/2015-05/msg00023.htmlnvdWEB
packetstormsecurity.com/files/131835/Docker-Privilege-Escalation-Information-Disclosure.htmlnvdWEB
seclists.org/fulldisclosure/2015/May/28nvdWEB
github.com/moby/moby/compare/769acfec2928c47a35da5357d854145b1036448d...b6a9dc399be31c531e3753104e10d74760ed75a2ghsaWEB
groups.google.com/forum/ghsaWEB
groups.google.com/forum/nvdWEB
web.nvd.nist.gov/view/vuln/detailghsaWEB

News mentions

No linked articles in our index yet.

cvss	0.260
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000