pkg:Go/github.com/docker/docker

All known vulnerabilities

• CRITICAL9.9CVE-2024-41110docker.io - security update
  >= 20.10.0+incompatible, < 25.0.6+incompatible, >= 26.0.0+incompatible, < 26.1.5+incompatible, >= 27.0.0+incompatible, < 27.1.1+incompatible
• CRITICAL9.9CVE-2024-41110docker.io - security update
  >= 19.03.0, < 23.0.15
• CRITICAL9.8Moby Docker cp broken with debian containers in github.com/docker/docker
  >= 19.03.0, < 19.03.1
• CRITICAL9.8Moby Docker cp broken with debian containers in github.com/docker/docker
  from 0, < 20.10.0-beta1+incompatible
• CRITICAL9.8Arbitrary Code Execution in github.com/docker/docker
  from 0, < 1.3.3
• CRITICAL9.8Arbitrary Code Execution in github.com/docker/docker
  from 0, < 1.3.3
• HIGH8.8Moby has AuthZ plugin bypass when provided oversized request bodies in github.com/docker/docker
  from 0
• HIGH8.8Moby has AuthZ plugin bypass when provided oversized request bodies in github.com/docker/docker
  from 0, < 29.3.1
• HIGH8.4Information Exposure in Docker Engine in github.com/docker/docker
  >= 1.6.0, < 1.6.1
• HIGH8.4Arbitrary File Write in Libcontainer in github.com/docker/docker
  >= 1.6.0, < 1.6.1
• HIGH8.4Information Exposure in Docker Engine in github.com/docker/docker
  >= 1.6.0, < 1.6.1
• HIGH8.4Arbitrary File Write in Libcontainer in github.com/docker/docker
  >= 1.6.0, < 1.6.1
• HIGH8.4Privilege Escalation in Docker in github.com/docker/docker
  from 0, < 1.0.1
• HIGH8.4Privilege Escalation in Docker in github.com/docker/docker
  from 0, < 1.0.1
• HIGH7.5Docker Authentication Bypass
  from 0, < 17.06.0-ce
• HIGH7.5Docker Swarm encrypted overlay network may be unauthenticated in github.com/docker/docker
  >= 1.12.0, < 20.10.24+incompatible, >= 23.0.0+incompatible, < 23.0.3+incompatible
• HIGH7.5Docker Swarm encrypted overlay network may be unauthenticated in github.com/docker/docker
  >= 1.12.0, < 20.10.24
• HIGH7.5Secret insertion into debug log in Docker
  from 0, < 18.09.8
• HIGH7.3Arbitrary Code Execution in Docker in github.com/docker/docker
  from 0, < 1.3.2
• HIGH7.3Arbitrary Code Execution in Docker in github.com/docker/docker
  from 0, < 1.3.2
• HIGH7.2Docker: Race condition in docker cp allows bind mount redirection to host path
  from 0, <= 28.5.2
• HIGH7.2Docker: `PUT /containers/{id}/archive` executes container binary on the host
  from 0, <= 28.5.2
• MEDIUM6.9Classic builder cache poisoning in github.com/docker/docker
  from 0, < 24.0.9
• MEDIUM6.9Classic builder cache poisoning in github.com/docker/docker
  from 0, < 24.0.9+incompatible, >= 25.0.0+incompatible, < 25.0.2+incompatible
• MEDIUM6.8Moby has an Off-by-one error in its plugin privilege validation in github.com/docker/docker
  from 0
• MEDIUM6.8Moby has an Off-by-one error in its plugin privilege validation in github.com/docker/docker
  from 0
• MEDIUM6.8Docker Swarm encrypted overlay network traffic may be unencrypted in github.com/docker/docker
  >= 1.12.0, < 20.10.24+incompatible, >= 23.0.0+incompatible, < 23.0.3+incompatible
• MEDIUM6.8Docker Swarm encrypted overlay network traffic may be unencrypted in github.com/docker/docker
  >= 1.12.0, < 20.10.24
• MEDIUM6.8Docker Swarm encrypted overlay network with a single endpoint is unauthenticated in github.com/docker/docker
  >= 1.12.0, < 20.10.24
• MEDIUM6.8Docker Swarm encrypted overlay network with a single endpoint is unauthenticated in github.com/docker/docker
  >= 1.12.0, < 20.10.24+incompatible, >= 23.0.0+incompatible, < 23.0.3+incompatible
• MEDIUM6.5Directory Traversal in Docker in github.com/docker/docker
  from 0, < 1.3.2
• MEDIUM6.5Directory Traversal in Docker in github.com/docker/docker
  from 0, < 1.3.2
• MEDIUM6.1Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap
  from 0, <= 28.5.2
• MEDIUM5.9containerd - security update
  from 0, < 20.10.14+incompatible
• MEDIUM5.9containerd - security update
  from 0, < 20.10.14
• MEDIUM5.9Data exfiltration from internal networks in github.com/docker/docker
  >= 26.0.0-rc1, < 26.0.0-rc3
• MEDIUM5.9Data exfiltration from internal networks in github.com/docker/docker
  >= 25.0.0+incompatible, < 25.0.5+incompatible, >= 26.0.0-rc1+incompatible, < 26.0.0-rc3+incompatible
• MEDIUM5.9Moby (Docker Engine) Insufficiently restricted permissions on data directory in github.com/docker/docker
  from 0, < 20.10.9+incompatible
• MEDIUM5.9Moby (Docker Engine) Insufficiently restricted permissions on data directory in github.com/docker/docker
  from 0, < 20.10.9
• MEDIUM5.9Path Traversal in Docker in github.com/docker/docker
  from 0, < 1.3.3
• MEDIUM5.9Path Traversal in Docker in github.com/docker/docker
  from 0, < 1.3.3
• MEDIUM5.3Path Traversal in Moby builder
  from 0, < 19.03.9
• MEDIUM5.3Docker supplementary group permissions not set up properly, allowing attackers to bypass primary group restrictions in github.com/docker/docker
  from 0, < 20.10.18
• MEDIUM5.3Docker supplementary group permissions not set up properly, allowing attackers to bypass primary group restrictions in github.com/docker/docker
  from 0, < 20.10.18+incompatible
• MEDIUM5.3Man-in-the-Middle (MitM) in github.com/docker/docker
  from 0, < 1.3.1
• MEDIUM5.3Man-in-the-Middle (MitM) in github.com/docker/docker
  from 0, < 1.3.1
• MEDIUM5.1Arbitrary File Override in Docker Engine in github.com/docker/docker
  from 0, < 1.6.1
• MEDIUM5.1Arbitrary File Override in Docker Engine in github.com/docker/docker
  from 0, < 1.6.1
• MEDIUM4.7IPv6 enabled on IPv4-only network interfaces in github.com/docker/docker
  >= 26.0.0, < 26.0.2
• MEDIUM4.7IPv6 enabled on IPv4-only network interfaces in github.com/docker/docker
  >= 26.0.0+incompatible, < 26.0.2+incompatible
• MEDIUM4.6Moby firewalld reload makes published container ports accessible from remote hosts in github.com/docker/docker
  >= 28.2.0, < 28.3.3
• MEDIUM4.6Moby firewalld reload makes published container ports accessible from remote hosts in github.com/docker/docker
  >= 28.2.0+incompatible, < 28.3.3+incompatible
• LOW3.3Moby firewalld reload removes bridge network isolation in github.com/docker/docker
  from 0, < 25.0.13+incompatible
• LOW3.3Moby firewalld reload removes bridge network isolation in github.com/docker/docker
  from 0, < 25.0.13
• LOW3.0Moby (Docker Engine) is vulnerable to Ambiguous OCI manifest parsing in github.com/docker/docker
  from 0, < 20.10.11+incompatible
• LOW2.8Unexpected chmod of host files via 'docker cp' in Moby Docker Engine in github.com/docker/docker
  from 0, < 20.10.9
• LOW2.8Unexpected chmod of host files via 'docker cp' in Moby Docker Engine in github.com/docker/docker
  from 0, < 20.10.9+incompatible
• —Access Restriction Bypass in Docker in github.com/docker/docker
  >= 1.3.0, < 1.3.2
• —Access Restriction Bypass in Docker in github.com/docker/docker
  >= 1.3.0, < 1.3.2
• —Symlink Attack in Libcontainer and Docker Engine in github.com/docker/docker
  from 0, < 1.6.1
• —Symlink Attack in Libcontainer and Docker Engine in github.com/docker/docker
  from 0, < 1.6.1