CVE-2021-21285

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Docker versions prior to 19.03.15 Docker versions prior to 20.10.3

Description: The issue is related to the incorrect processing of a Docker image manifest, which can cause the dockerd daemon to crash when an intentionally malformed image manifest is pulled. This can be exploited by a remote attacker to cause a denial of service.

Recommendations: For Docker versions prior to 19.03.15, update to version 19.03.15 or later to prevent the daemon from crashing. For Docker versions prior to 20.10.3, update to version 20.10.3 or later to prevent the daemon from crashing.

Fix

DoS

Resource Exhaustion

Improper Check for Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-754

Related Identifiers

ALT-PU-2021-4842

BDU:2021-01892

CLEANSTART-2026-BK59402

CLEANSTART-2026-BN11148

CLEANSTART-2026-GY69323

CLEANSTART-2026-HI89495

CLEANSTART-2026-HL71566

CLEANSTART-2026-JD48541

CLEANSTART-2026-OS18490

CLEANSTART-2026-SB85645

CLEANSTART-2026-SP51034

CLEANSTART-2026-TD34476

CLEANSTART-2026-XL45869

CLEANSTART-2026-YB44027

CLEANSTART-2026-ZM20570

CVE-2021-21285

DSA-4865-1

GHSA-6FJ5-M822-RQX8

OESA-2021-1102

OPENSUSE-SU-2021:0278-1

OPENSUSE-SU-2021:0878-1

OPENSUSE-SU-2021:1954-1

OPENSUSE-SU-2021_0278-1

OPENSUSE-SU-2021_0878-1

OPENSUSE-SU-2021_1954-1

SUSE-SU-2021:0435-1

SUSE-SU-2021:0445-1

SUSE-SU-2021:1458-1

SUSE-SU-2021:1954-1

SUSE-SU-2025:03540-1

SUSE-SU-2025:03545-1

USN-5032-1

USN-5032-2

Affected Products

Alt Linux

Astra Linux

Docker

Suse

CVE-2021-21285

Weakness Enumeration

Related Identifiers

Affected Products

References · 410