[Git][security-tracker-team/security-tracker][master] containerd issue affects docker in stable
Moritz Muehlenhoff
jmm at debian.org
Mon Oct 26 18:19:03 GMT 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e7af3e87 by Moritz Muehlenhoff at 2020-10-26T19:18:41+01:00
containerd issue affects docker in stable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -26854,10 +26854,11 @@ CVE-2020-15158 (In libIEC61850 before version 1.4.3, when a message with COTP me
NOT-FOR-US: libIEC61850
CVE-2020-15157 (In containerd (an industry-standard container runtime) before version ...)
- containerd 1.3.2~ds1-2
+ - docker.io 19.03.12+dfsg1-1
NOTE: https://www.openwall.com/lists/oss-security/2020/10/15/1
NOTE: https://github.com/containerd/containerd/security/advisories/GHSA-742w-89gc-8m9c
NOTE: https://github.com/containerd/containerd/commit/1ead8d9deb3b175bf40413b8c47b3d19c2262726 (v1.2.14)
- TODO: check possibly e.g. docker.io using containerd
+ NOTE: docker.io switched to systemwide containerd packages in 19.03.12+dfsg1-1
CVE-2020-15156 (In nodebb-plugin-blog-comments before version 0.7.0, a logged in user ...)
NOT-FOR-US: nodebb-plugin-blog-comments
CVE-2020-15155 (baserCMS 4.3.6 and earlier is affected by Cross Site Scripting (XSS) v ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7af3e87079f365038615108071a9eb3e12eb92e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7af3e87079f365038615108071a9eb3e12eb92e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201026/4ebec72d/attachment.html>
More information about the debian-security-tracker-commits
mailing list