Jasiel Spelman discovered that a double free existed in the docker-credential- helpers dependency of Docker. A local attacker could use this to cause a denial of service (crash) or possibly execute arbitrary code.
Original advisory details:
Jasiel Spelman discovered that a double free existed in docker-credential- helpers. A local attacker could use this to cause a denial of service (crash) or possibly execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "docker-doc": "18.09.7-0ubuntu1~16.04.5", "docker.io": "18.09.7-0ubuntu1~16.04.5", "golang-github-docker-docker-dev": "18.09.7-0ubuntu1~16.04.5", "golang-docker-dev": "18.09.7-0ubuntu1~16.04.5", "vim-syntax-docker": "18.09.7-0ubuntu1~16.04.5" } ] }
{ "availability": "No subscription required", "binaries": [ { "docker-doc": "18.09.7-0ubuntu1~18.04.4", "docker.io": "18.09.7-0ubuntu1~18.04.4", "golang-github-docker-docker-dev": "18.09.7-0ubuntu1~18.04.4", "golang-docker-dev": "18.09.7-0ubuntu1~18.04.4", "vim-syntax-docker": "18.09.7-0ubuntu1~18.04.4" } ] }