MGASA-2025-0189

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2025-0189.html

Import Source

https://advisories.mageia.org/MGASA-2025-0189.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2025-0189

Related

CVE-2024-29018

Published

2025-06-24T20:11:57Z

Modified

2025-06-24T19:33:01Z

Summary

Updated docker packages fix security vulnerability

Details

External DNS requests from 'internal' networks could lead to data exfiltration - CVE-2024-29018 We can't determine if docker 24.0.5 is affected but as it is no longer supported we are releasing version 25.0.7, as it is supported and free of the CVE.

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:9 / docker

Package

Name: docker
Purl: pkg:rpm/mageia/docker?arch=source&distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

25.0.7-1.mga9

Ecosystem specific

{
    "section": "core"
}