PT-2017-7651 · Docker+2 · Docker+2

Published

2017-05-25

Updated

2021-08-25

CVE-2016-0761

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Cloud Foundry Garden-Linux versions prior to v0.333.0 Elastic Runtime 1.6.x versions prior to 1.6.17

Description The issue is related to a flaw in managing container files during Docker image preparation. This flaw could be exploited to delete, corrupt, or overwrite host files and directories, including other container filesystems on the host.

Recommendations For Cloud Foundry Garden-Linux versions prior to v0.333.0, update to version v0.333.0 or later to resolve the issue. For Elastic Runtime 1.6.x versions prior to 1.6.17, update to version 1.6.17 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-19

Related Identifiers

CVE-2016-0761

Affected Products

Cloud Foundry Garden-Linux

Docker

Runtime

PT-2017-7651 · Docker+2 · Docker+2

CVE-2016-0761

Weakness Enumeration

Related Identifiers

Affected Products

References · 4