Advisories ยป MGASA-2023-0009

Updated docker packages fix security vulnerability

Publication date: 24 Jan 2023
Modification date: 24 Jan 2023
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-29153 , CVE-2022-36109 , CVE-2022-3920

Description

Server side request forgery (CVE-2022-29153)

Bypass primary group restrictions due to a flaw in the supplementary group
access setup (CVE-2022-36109)

Imported Nodes/Services Information leak in moby-engine. (CVE-2022-3920)
                

References

SRPMS

8/core