UBUNTU-CVE-2025-62725

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2025-62725

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-62725.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2025-62725

Upstream

CVE-2025-62725

Published

2025-10-27T21:15:00Z

Modified

2025-10-30T05:25:20Z

Severity

8.9 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H CVSS Calculator
Ubuntu - medium

Summary

[none]

Details

Docker Compose trusts the path information embedded in remote OCI compose artifacts. When a layer includes the annotations com.docker.compose.extends or com.docker.compose.envfile, Compose joins the attacker‑supplied value from com.docker.compose.file/com.docker.compose.envfile with its local cache directory and writes the file there. This affects any platform or workflow that resolves remote OCI compose artifacts, Docker Desktop, standalone Compose binaries on Linux, CI/CD runners, cloud dev environments is affected. An attacker can escape the cache directory and overwrite arbitrary files on the machine running docker compose, even if the user only runs read‑only commands such as docker compose config or docker compose ps. This issue is fixed in v2.40.2.

References

Affected packages

Ubuntu:16.04:LTS

docker-compose

Package

Name: docker-compose
Purl: pkg:deb/ubuntu/docker-compose@1.8.0-2~16.04.1?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.3.1-1

1.5.1-1

1.5.2-1

1.8.0-2~16.04.1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "docker-compose",
            "binary_version": "1.8.0-2~16.04.1"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-62725.json"

Ubuntu:18.04:LTS

docker-compose

Package

Name: docker-compose
Purl: pkg:deb/ubuntu/docker-compose@1.17.1-2?arch=source&distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.8.0-2

1.17.0-1

1.17.1-1

1.17.1-2

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "docker-compose",
            "binary_version": "1.17.1-2"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-62725.json"

Ubuntu:20.04:LTS

docker-compose

Package

Name: docker-compose
Purl: pkg:deb/ubuntu/docker-compose@1.25.0-1?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.21.0-3

1.25.0-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "docker-compose",
            "binary_version": "1.25.0-1"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-62725.json"

Ubuntu:22.04:LTS

docker-compose

Package

Name: docker-compose
Purl: pkg:deb/ubuntu/docker-compose@1.29.2-1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.27.4-1

1.27.4-2

1.27.4-3

1.29.2-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "docker-compose",
            "binary_version": "1.29.2-1"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-62725.json"

Ubuntu:24.04:LTS

docker-compose

Package

Name: docker-compose
Purl: pkg:deb/ubuntu/docker-compose@1.29.2-6ubuntu1?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.29.2-6

1.29.2-6ubuntu1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "docker-compose",
            "binary_version": "1.29.2-6ubuntu1"
        },
        {
            "binary_name": "python3-compose",
            "binary_version": "1.29.2-6ubuntu1"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-62725.json"

Ubuntu:25.04

docker-compose

Package

Name: docker-compose
Purl: pkg:deb/ubuntu/docker-compose@1.29.2-6.4?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.29.2-6.3

1.29.2-6.4

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "docker-compose",
            "binary_version": "1.29.2-6.4"
        },
        {
            "binary_name": "python3-compose",
            "binary_version": "1.29.2-6.4"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-62725.json"