[Git][security-tracker-team/security-tracker][master] Add links to fixes for Docker CVEs
Felix Geyer
fgeyer at debian.org
Sat Feb 20 08:38:41 GMT 2021
Felix Geyer pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fd1859a8 by Felix Geyer at 2021-02-20T09:33:19+01:00
Add links to fixes for Docker CVEs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15065,9 +15065,13 @@ CVE-2021-21286 (AVideo Platform is an open-source Audio and Video platform. It i
CVE-2021-21285 (In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in ...)
- docker.io 20.10.3+dfsg1-1
NOTE: https://github.com/moby/moby/security/advisories/GHSA-6fj5-m822-rqx8
+ NOTE: https://github.com/moby/moby/commit/420b1d36250f9cfdc561f086f25a213ecb669b6f (v19.03)
CVE-2021-21284 (In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in ...)
- docker.io 20.10.3+dfsg1-1
NOTE: https://github.com/moby/moby/security/advisories/GHSA-7452-xqpj-6rpc
+ NOTE: https://github.com/moby/moby/commit/1342c51d5e809d2994e6f7e490c8d2b3b12c28ae (v19.03)
+ NOTE: https://github.com/moby/moby/commit/5eff67a2c294b7e72607e0949ebc0de21710e4d3 (v19.03)
+ NOTE: https://github.com/moby/moby/commit/67de83e70bca92ae6a08e28a03b3fc8fcca9f3f1 (v19.03)
CVE-2021-21283 (Flarum is an open source discussion platform for websites. The "Flarum ...)
NOT-FOR-US: Flarum
CVE-2021-21282
@@ -55962,6 +55966,7 @@ CVE-2020-15257 (containerd is an industry-standard container runtime and is avai
- containerd 1.4.3~ds1-1
- docker.io 20.10.0~rc1+dfsg2-1
NOTE: https://github.com/containerd/containerd/security/advisories/GHSA-36xw-fx78-c5r4
+ NOTE: https://github.com/containerd/containerd/commit/3519233e1b5a408c7e92b0af4293000820a0089b (v1.2)
NOTE: docker.io switched to systemwide containerd packages in 20.10.0~rc1+dfsg2-1
TODO: check details
CVE-2020-15256 (A prototype pollution vulnerability has been found in `object-path` &l ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fd1859a8870126abf487e5b007ba1e2bedfa687a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fd1859a8870126abf487e5b007ba1e2bedfa687a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210220/6e152cb5/attachment.html>
More information about the debian-security-tracker-commits
mailing list