Soh0Ro0To

**Name of the Vulnerable Software and Affected Versions** docker2aci versions prior to 0.13.0 **Description** The issue allows remote attackers to write to arbitrary files via a .. (dot dot) in the embedded layer data in an image. This is due to a directory traversal vulnerability. **Recommendations** For versions prior to 0.13.0, update to version 0.13.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the embedded layer data in images to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** docker2aci versions 0.12.3 and earlier **Description** The issue is related to an infinite loop that occurs when handling local images with a cyclic dependency chain, potentially leading to a Denial of Service. **Recommendations** For docker2aci versions 0.12.3 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.