Wind River Support Network

HomeDefectsLIN1018-7375
Fixed

LIN1018-7375 : Security Advisory - docker - CVE-2020-13401

Created: Mar 9, 2021    Updated: Apr 22, 2022
Resolved Date: Mar 23, 2021
Found In Version: 10.18.44.1
Fix Version: 10.18.44.22
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAP_NET_RAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service.

CREATE(Triage):(User=admin) CVE-2020-13401 (https://nvd.nist.gov/vuln/detail/CVE-2020-13401)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube