CVE-2016-8579: Improper Input Validation
(updated )
docker2aci <= 0.12.3 has an infinite loop when handling local images with cyclic dependency chain.
References
- github.com/advisories/GHSA-gfh2-7jg5-653p
- github.com/appc/docker2aci/issues/203
- github.com/appc/docker2aci/pull/204/commits/54331ec7020e102935c31096f336d31f6400064f
- github.com/appc/docker2aci/releases/tag/v0.13.0
- nvd.nist.gov/vuln/detail/CVE-2016-8579
- web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-8579
- www.securityfocus.com/bid/93560
Code Behaviors & Features
Detect and mitigate CVE-2016-8579 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →