Jasiel Spelman discovered that docker-credential-helpers has a double free. A local attacker could use this to cause a denial of service (crash) or possibly execute arbitrary code.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "golang-docker-credential-helpers": "0.5.0-2ubuntu0.1+esm1", "golang-docker-credential-helpers-dbgsym": "0.5.0-2ubuntu0.1+esm1", "golang-github-docker-docker-credential-helpers-dev": "0.5.0-2ubuntu0.1+esm1" } ] }