AVG-892 log
| Package | docker |
| Status | Not affected |
| Severity | High |
| Type | privilege escalation |
| Affected | 1:18.09.1-2 |
| Fixed | 1:18.09.2-1 |
| Current | 1:27.3.1-1 [extra] |
| Ticket | None |
| Created | Mon Feb 11 23:32:57 2019 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2019-5736 | High | Yes | Privilege escalation | A vulnerability discovered in runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary... |
| References |
|---|
https://git.archlinux.org/svntogit/community.git/commit/trunk?h=packages/docker&id=d5f0c91102be0296e2142e473804e915a3a885b3 |
| Notes |
|---|
Not affected directly as runc is devendored since 1:18.09.0-2 |