Security bypass vulnerability in docker engine via an image that allows volumes to override files in /procID: oval:org.secpod.oval:def:42575 | Date: (C)2017-10-27 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
The host is installed with docker.io on Ubuntu 14.04 or 16.04 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly handle an image that allows
volumes to override files in /proc. Successful exploitation could allow attackers to set arbitrary Linux Security Modules (LSM).
Platform: |
Ubuntu 16.04 |
Ubuntu 14.04 |