The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2019-5736, which was previously fixed via RHSA-2019:0304. This issue could allow a malicious or compromised container to compromise the container host and other containers running on the same host. This issue only affects docker version 1.13.1-108.git4ef4b30.el7, shipped in Red Hat Enterprise Linux 7 Extras. Both earlier and later versions are not affected.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2020-07-13T20:53:26
Updated: 2024-08-04T12:39:36.209Z
Reserved: 2020-06-17T00:00:00
Link: CVE-2020-14298
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-07-13T21:15:14.187
Modified: 2024-11-21T05:02:57.240
Link: CVE-2020-14298
Redhat