CVE-2016-8579

NameCVE-2016-8579
Descriptiondocker2aci <= 0.12.3 has an infinite loop when handling local images with cyclic dependency chain.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs840711

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
golang-github-appc-docker2aci (PTS)buster0.17.2+dfsg-2fixed
bullseye0.17.2+dfsg-2.1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
golang-github-appc-docker2acisource(unstable)0.12.3+dfsg-2840711

Notes

https://github.com/appc/docker2aci/issues/203
https://github.com/lucab/docker2aci/commit/54331ec7020e102935c31096f336d31f6400064f
Search for package or bug name: Reporting problems