The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2019-5736, which was previously fixed via RHSA-2019:0304. This issue could allow a malicious or compromised container to compromise the container host and other containers running on the same host. This issue only affects docker version 1.13.1-108.git4ef4b30.el7, shipped in Red Hat Enterprise Linux 7 Extras. Both earlier and later versions are not affected.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2020-07-13T20:53:26

Updated: 2024-08-04T12:39:36.209Z

Reserved: 2020-06-17T00:00:00

Link: CVE-2020-14298

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-07-13T21:15:14.187

Modified: 2024-11-21T05:02:57.240

Link: CVE-2020-14298

cve-icon Redhat

Severity : Important

Publid Date: 2020-06-23T19:00:00Z

Links: CVE-2020-14298 - Bugzilla