CVE-2020-14298

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-14298

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-14298.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2020-14298

Related

RHSA-2020:2653

Withdrawn

2024-05-15T05:32:31.893792Z

Published

2020-07-13T21:15:14Z

Modified

2023-11-29T07:54:40.142100Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2019-5736, which was previously fixed via RHSA-2019:0304. This issue could allow a malicious or compromised container to compromise the container host and other containers running on the same host. This issue only affects docker version 1.13.1-108.git4ef4b30.el7, shipped in Red Hat Enterprise Linux 7 Extras. Both earlier and later versions are not affected.

References

Affected packages

Git / github.com/docker/docker

Affected ranges

Type: GIT
Repo: https://github.com/docker/docker
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

092cba3727bb9b4a2f0e922cd6c0f93ea270e363

Type: GIT
Repo: https://github.com/docker/engine
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

092cba3727bb9b4a2f0e922cd6c0f93ea270e363

Affected versions

0.*

0.0.3

Other

autorun/1

docs-v1.*

docs-v1.12.0-rc4-2016-07-15

upstream/0.*

upstream/0.1.1

upstream/0.1.2

upstream/0.1.3

upstream/0.1.4

v0.*

v0.1.0

v0.1.1

v0.1.2

v0.1.3

v0.1.4

v0.1.5

v0.1.6

v0.1.7

v0.1.8

v0.10.0

v0.11.0

v0.11.1

v0.12.0

v0.2.0

v0.2.1

v0.2.2

v0.3.0

v0.3.1

v0.3.2

v0.3.3

v0.3.4

v0.4.0

v0.4.1

v0.4.2

v0.4.3

v0.4.4

v0.4.5

v0.4.6

v0.4.7

v0.4.8

v0.5.0

v0.5.1

v0.5.2

v0.5.3

v0.6.0

v0.6.1

v0.6.2

v0.6.3

v0.6.4

v0.6.5

v0.6.6

v0.6.7

v0.7.0

v0.7.0-rc5

v0.7.0-rc6

v0.7.1

v0.7.2

v0.7.3

v0.7.4

v0.7.5

v0.7.6

v0.8.0

v0.8.1

v0.9.0

v1.*

v1.0.0

v1.0.1

v1.1.0

v1.1.1

v1.1.2

v1.13.0

v1.13.0-rc1

v1.13.0-rc2

v1.13.0-rc3

v1.13.0-rc4

v1.13.0-rc5

v1.13.0-rc6

v1.13.0-rc7

v1.13.1

v1.13.1-rc1

v1.13.1-rc2

v1.2.0

v1.3.0

v1.3.1

v1.3.2

v1.3.3

v1.4.0

v1.4.1