Information on source package docker.io

Available versions

ReleaseVersion
sid1.13.1~ds3-4

Open issues

BugsidDescription
CVE-2017-14992vulnerableLack of content verification in Docker-CE (Also known as Moby) ...

Resolved issues

BugDescription
TEMP-0000000-7C9547docker VMM breakout
CVE-2017-16539The DefaultLinuxSpec function in oci/defaults.go in Docker Moby through ...
CVE-2016-9962RunC allowed additional container processes via 'runc exec' to be ...
CVE-2016-8867Docker Engine 1.12.2 enabled ambient capabilities with misconfigured ...
CVE-2016-6595** DISPUTED ** The SwarmKit toolkit 1.12.0 for Docker allows remote ...
CVE-2016-3697libcontainer/user/user.go in runC before 0.1.0, as used in Docker ...
CVE-2015-3631Docker Engine before 1.6.1 allows local users to set arbitrary Linux ...
CVE-2015-3630Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, ...
CVE-2015-3629Libcontainer 1.6.0, as used in Docker Engine, allows local users to ...
CVE-2015-3627Libcontainer and Docker Engine before 1.6.1 opens the file-descriptor ...
CVE-2015-1843The Red Hat docker package before 1.5.0-28, when using the ...
CVE-2014-9358Docker before 1.3.3 does not properly validate image IDs, which allows ...
CVE-2014-9357Docker 1.3.2 allows remote attackers to execute arbitrary code with ...
CVE-2014-9356Path traversal during processing of absolute symlinks
CVE-2014-8179
CVE-2014-8178
CVE-2014-6408Docker 1.3.0 through 1.3.1 allows remote attackers to modify the ...
CVE-2014-6407Docker before 1.3.2 allows remote attackers to write to arbitrary ...
CVE-2014-5282Docker before 1.3 does not properly validate image IDs, which allows ...
CVE-2014-5277Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when ...
CVE-2014-3499Docker 1.0.0 uses world-readable and world-writable permissions on the ...
CVE-2014-0048multiple files downloaded over HTTP and executed or used unsafely
CVE-2014-0047Docker before 1.5 allows local users to have unspecified impact via ...

Search for package or bug name: Reporting problems