Vulnerabilities (CVE)

Filtered by vendor Docker Subscribe
Filtered by product Libcontainer
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-3629 2 Docker, Opensuse 2 Libcontainer, Opensuse 2024-11-21 7.2 HIGH 7.8 HIGH
Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization ("mount namespace breakout") and write to arbitrary file on the host system via a symlink attack in an image when respawning a container.
CVE-2015-3627 1 Docker 2 Docker, Libcontainer 2024-11-21 7.2 HIGH N/A
Libcontainer and Docker Engine before 1.6.1 opens the file-descriptor passed to the pid-1 process before performing the chroot, which allows local users to gain privileges via a symlink attack in an image.