CVE-2021-21285

Improper Check for Unusual or Exceptional Conditions in go/github.com/moby/moby

Identifiers

GHSA-6fj5-m822-rqx8, CVE-2021-21285

Package Slug

go/github.com/moby/moby

Vulnerability

Improper Check for Unusual or Exceptional Conditions

Description

In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing.

Affected Versions

All versions before 19.3.15, all versions starting from 20.10.0-beta1 before 20.10.3

Solution

Upgrade to versions 19.3.15, 20.10.3 or above.

Last Modified

2024-02-01

source