Wind River Support Network

HomeDefectsLIN1018-3386
Fixed

LIN1018-3386 : Security Advisory - docker - CVE-2018-20699

Created: Jan 15, 2019    Updated: Feb 19, 2019
Resolved Date: Jan 28, 2019
Found In Version: unknown
Fix Version: 10.18.44.4
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

Docker Engine before 18.09 allows attackers to cause a denial of service (dockerd memory consumption) via a large integer in a --cpuset-mems or --cpuset-cpus value, related to daemon/daemon_unix.go, pkg/parsers/parsers.go, and pkg/sysinfo/sysinfo.go.

https://nvd.nist.gov/vuln/detail/CVE-2018-20699

CVEs


Live chat
Online