Cloud Foundry Logo
blog single gear
Blog
Security Advisory

CVE-2016-0761 Docker Image Host Files Corruption

by: February 26, 2016

CVE-2016-0761 Docker Image Host Files Corruption

Severity

Critical

Vendor

Cloud Foundry Foundation

Description

Garden linux contains a flaw in managing container files during Docker image preparation that could be used to delete, corrupt or overwrite host files and directories, including other container filesystems on the host.

Affected Products and Versions

  • All Cloud Foundry Garden-Linux versions prior to and including v0.332.0.

Mitigation

Users of affected versions should apply the following mitigation:

  • The Cloud Foundry Foundation recommends that all deployments of Garden-Linux are upgraded to v0.333.0

Credit

Swisscom / SEC Consult

References

Cloud Foundry Foundation Security Team Profile Image

Cloud Foundry Foundation Security Team, AUTHOR

SEE ALL ARTICLES

You Might Also Like

USN-3212-2: LibTIFF regression
Security Advisory

USN-3212-2: LibTIFF regression

by Cloud Foundry Foundation Security Team June 22, 2017
CVE-2019-11293: UAA logs all query parameters with debug logging level
Security Advisory

CVE-2019-11293: UAA logs all query parameters with debug logging level

by Cloud Foundry Foundation Security Team December 3, 2019
USN-3816-1: systemd vulnerabilities
Security Advisory

USN-3816-1: systemd vulnerabilities

by Cloud Foundry Foundation Security Team November 20, 2018
This website uses cookies to offer you a better browsing experience. Find out more about how we use cookies and how you can change your settings. Accept