[Git][security-tracker-team/security-tracker][master] Add links to fixes for Docker CVEs

Sat, 20 Feb 2021 00:38:52 -0800 


Felix Geyer pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
fd1859a8 by Felix Geyer at 2021-02-20T09:33:19+01:00
Add links to fixes for Docker CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15065,9 +15065,13 @@ CVE-2021-21286 (AVideo Platform is an open-source 
Audio and Video platform. It i
 CVE-2021-21285 (In Docker before versions 9.03.15, 20.10.3 there is a 
vulnerability in ...)
        - docker.io 20.10.3+dfsg1-1
        NOTE: 
https://github.com/moby/moby/security/advisories/GHSA-6fj5-m822-rqx8
+       NOTE: 
https://github.com/moby/moby/commit/420b1d36250f9cfdc561f086f25a213ecb669b6f 
(v19.03)
 CVE-2021-21284 (In Docker before versions 9.03.15, 20.10.3 there is a 
vulnerability in ...)
        - docker.io 20.10.3+dfsg1-1
        NOTE: 
https://github.com/moby/moby/security/advisories/GHSA-7452-xqpj-6rpc
+       NOTE: 
https://github.com/moby/moby/commit/1342c51d5e809d2994e6f7e490c8d2b3b12c28ae 
(v19.03)
+       NOTE: 
https://github.com/moby/moby/commit/5eff67a2c294b7e72607e0949ebc0de21710e4d3 
(v19.03)
+       NOTE: 
https://github.com/moby/moby/commit/67de83e70bca92ae6a08e28a03b3fc8fcca9f3f1 
(v19.03)
 CVE-2021-21283 (Flarum is an open source discussion platform for websites. The 
"Flarum ...)
        NOT-FOR-US: Flarum
 CVE-2021-21282
@@ -55962,6 +55966,7 @@ CVE-2020-15257 (containerd is an industry-standard 
container runtime and is avai
        - containerd 1.4.3~ds1-1
        - docker.io 20.10.0~rc1+dfsg2-1
        NOTE: 
https://github.com/containerd/containerd/security/advisories/GHSA-36xw-fx78-c5r4
+       NOTE: 
https://github.com/containerd/containerd/commit/3519233e1b5a408c7e92b0af4293000820a0089b
 (v1.2)
        NOTE: docker.io switched to systemwide containerd packages in 
20.10.0~rc1+dfsg2-1
        TODO: check details
 CVE-2020-15256 (A prototype pollution vulnerability has been found in 
`object-path` &l ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fd1859a8870126abf487e5b007ba1e2bedfa687a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fd1859a8870126abf487e5b007ba1e2bedfa687a
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to