Threat Encyclopedia

Browse the Fortiguard Labs extensive encyclopedia of threats. Click any title to view more details of the threat. Can't find what you are looking for? Try using the search bar above to find a specific threat description.

Libcontainer and Docker Engine before 1.6.1 opens the file-descriptor passed to the pid-1 process before performing the chroot,...

Oct 15, 2019
Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4)...

Oct 15, 2019
Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules (LSM) and docker_t policies via an image...

Oct 15, 2019
libcontainer/user/user.go in runC before 0.1.0, as used in Docker before 1.11.2, improperly treats a numeric UID as a potential...

Oct 15, 2019
RunC allowed additional container processes via \'runc exec\' to be ptraced by the pid 1 of the container. This allows the main...

Oct 15, 2019
Lack of content verification in Docker-CE (Also known as Moby) versions 1.12.6-0, 1.10.3, 17.03.0, 17.03.1, 17.03.2, 17.06.0,...

Oct 15, 2019
The default OCI linux spec in oci/defaults{_linux}.go in Docker/Moby from 1.11 to current does not block /proc/acpi pathnames....

Oct 15, 2019
In Docker before 18.09.4, an attacker who is capable of supplying or manipulating the build path for the \'docker build\' command...

Oct 15, 2019
In Docker CE and EE before 18.09.8 (as well as Docker EE before 17.06.2-ee-23 and 18.x before 18.03.1-ee-10), Docker Engine in...

Oct 15, 2019
In Docker 19.03.x before 19.03.1 linked against the GNU C Library (aka glibc), code injection can occur when the nsswitch facility...

Oct 15, 2019
Docker Desktop Community Edition before 2.1.0.1 allows local users to gain privileges by placing a Trojan horse docker-credential-wincred.exe...

Oct 15, 2019
runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary...

Oct 15, 2019
libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C. Security Fix(es): * HTTP/2:...

Oct 15, 2019
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades...

Oct 15, 2019
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: Heap overflow...

Oct 15, 2019
Poppler is a Portable Document Format (PDF) rendering library, used by applications such as Evince. Security Fix(es): * poppler:...

Oct 15, 2019
The Public Key Infrastructure (PKI) Deps module contains fundamental packages required as dependencies for the pki-core module...

Oct 15, 2019
The libwmf packages provide a library for reading and converting Windows Metafile Format (WMF) vector graphics. The library is...

Oct 15, 2019
Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fix(es): *...

Oct 15, 2019
Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades...

Oct 15, 2019