VYPR

apk package

chainguard/dockerd

pkg:apk/chainguard/dockerd

Vulnerabilities (47)

  • CVE-2019-13509HigJul 18, 2019
    affected < 0fixed 0

    In Docker CE and EE before 18.09.8 (as well as Docker EE before 17.06.2-ee-23 and 18.x before 18.03.1-ee-10), Docker Engine in debug mode may sometimes add secrets to the debug log. This applies to a scenario where docker stack deploy is run to redeploy a stack that includes (non

  • CVE-2015-3627May 18, 2015
    affected < 0fixed 0

    Libcontainer and Docker Engine before 1.6.1 opens the file-descriptor passed to the pid-1 process before performing the chroot, which allows local users to gain privileges via a symlink attack in an image.

  • CVE-2014-9358Dec 16, 2014
    affected < 0fixed 0

    Docker before 1.3.3 does not properly validate image IDs, which allows remote attackers to conduct path traversal attacks and spoof repositories via a crafted image in a (1) "docker load" operation or (2) "registry communications."

  • CVE-2014-9357Dec 16, 2014
    affected < 0fixed 0

    Docker 1.3.2 allows remote attackers to execute arbitrary code with root privileges via a crafted (1) image or (2) build in a Dockerfile in an LZMA (.xz) archive, related to the chroot for archive extraction.

  • CVE-2014-6407Dec 12, 2014
    affected < 0fixed 0

    Docker before 1.3.2 allows remote attackers to write to arbitrary files and execute arbitrary code via a (1) symlink or (2) hard link attack in an image archive in a (a) pull or (b) load operation.

  • CVE-2014-5277Nov 17, 2014
    affected < 0fixed 0

    Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to conduct downgrade attacks and obtain authentication and image data by leveraging a network position between the client and

  • CVE-2014-3499Jul 11, 2014
    affected < 0fixed 0

    Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

Page 3 of 3