ALT-PU-2020-3028-1
Package libnetwork updated to version 19.03.13-alt1.git026aaba for branch c9f1 in task 259520.
Closed vulnerabilities
Published: 2020-06-02
BDU:2020-03978
Уязвимость компонента CAP_NET_RAW программного обеспечения для автоматизации развёртывания и управления приложениями в средах с поддержкой контейнеризации Docker, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
Severity: MEDIUM (6.0)
Vector: AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L
References:
Published: 2020-06-02
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2020-13401
An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAP_NET_RAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service.
Severity: MEDIUM (6.0)
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L
References:
- openSUSE-SU-2020:0846
- http://www.openwall.com/lists/oss-security/2020/06/01/5
- https://docs.docker.com/engine/release-notes/
- https://github.com/docker/docker-ce/releases/tag/v19.03.11
- FEDORA-2020-5ba8c2d9d5
- FEDORA-2020-6d7deafd81
- GLSA-202008-15
- https://security.netapp.com/advisory/ntap-20200717-0002/
- DSA-4716
- openSUSE-SU-2020:0846
- DSA-4716
- https://security.netapp.com/advisory/ntap-20200717-0002/
- GLSA-202008-15
- FEDORA-2020-6d7deafd81
- FEDORA-2020-5ba8c2d9d5
- https://github.com/docker/docker-ce/releases/tag/v19.03.11
- https://docs.docker.com/engine/release-notes/
- http://www.openwall.com/lists/oss-security/2020/06/01/5