AVG-892 log

Package docker
Status Not affected
Severity High
Type privilege escalation
Affected 1:18.09.1-2
Fixed 1:18.09.2-1
Current 1:19.03.5-1 [community]
Ticket None
Created Mon Feb 11 23:32:57 2019
Issue Severity Remote Type Description
CVE-2019-5736 High Yes Privilege escalation
A vulnerability discovered in runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary...
References
https://git.archlinux.org/svntogit/community.git/commit/trunk?h=packages/docker&id=d5f0c91102be0296e2142e473804e915a3a885b3
Notes
Not affected directly as runc is devendored since 1:18.09.0-2