An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAP_NET_RAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service.
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00040.html
http://www.openwall.com/lists/oss-security/2020/06/01/5
https://docs.docker.com/engine/release-notes/
https://github.com/docker/docker-ce/releases/tag/v19.03.11
https://security.gentoo.org/glsa/202008-15
Source: MITRE
Published: 2020-06-02
Updated: 2020-08-27
Type: CWE-20
Base Score: 6
Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 6.8
Severity: MEDIUM
Base Score: 6
Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L
Impact Score: 3.7
Exploitability Score: 1.8
Severity: MEDIUM
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
143962 | NewStart CGSL CORE 5.04 / MAIN 5.04 : docker-ce Multiple Vulnerabilities (NS-SA-2020-0082) | Nessus | NewStart CGSL Local Security Checks | high |
139891 | GLSA-202008-15 : Docker: Information disclosure | Nessus | Gentoo Local Security Checks | medium |
139128 | EulerOS 2.0 SP8 : docker-engine (EulerOS-SA-2020-1798) | Nessus | Huawei Local Security Checks | medium |
138694 | openSUSE Security Update : containerd / docker / docker-runc / etc (openSUSE-2020-846) | Nessus | SuSE Local Security Checks | medium |
138543 | SUSE SLES15 Security Update : containerd, docker, docker-runc, golang-github-docker-libnetwork (SUSE-SU-2020:1657-2) | Nessus | SuSE Local Security Checks | medium |
138267 | SUSE SLES15 Security Update : containerd, docker, docker-runc, golang-github-docker-libnetwork (SUSE-SU-2020:1657-1) | Nessus | SuSE Local Security Checks | medium |
138105 | Debian DSA-4716-1 : docker.io - security update | Nessus | Debian Local Security Checks | medium |
137821 | Oracle Linux 7 : docker-cli / docker-engine (ELSA-2020-5739) | Nessus | Oracle Linux Local Security Checks | high |
137682 | Fedora 32 : moby-engine (2020-6d7deafd81) | Nessus | Fedora Local Security Checks | medium |
137681 | Fedora 31 : moby-engine (2020-5ba8c2d9d5) | Nessus | Fedora Local Security Checks | medium |
137099 | Amazon Linux AMI : docker (ALAS-2020-1376) | Nessus | Amazon Linux Local Security Checks | high |