VYPR
Moderate severityNVD Advisory· Published Feb 2, 2021· Updated Aug 3, 2024

Docker daemon crash during image pull of malicious image

CVE-2021-21285

Description

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/moby/mobyGo
< 19.3.1519.3.15
github.com/moby/mobyGo
>= 20.10.0-beta1, < 20.10.320.10.3

Affected products

118

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.