Detections
Analytics
RHEL 7 : docker (RHSA-2019:0304)
high Nessus Plugin ID 122111
Language:
Synopsis
The remote Red Hat host is missing a security update for docker.Description
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0304 advisory.Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that runs virtually anywhere.
Security Fix(es):
* A flaw was found in the way runc handled system file descriptors when running containers. A malicious container could use this flaw to overwrite contents of the runc binary and consequently run arbitrary commands on the container host system. (CVE-2019-5736)
Additional details about this flaw, including mitigation information, can be found in the vulnerability article linked from the Reference section.
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Update the RHEL docker package based on the guidance in RHSA-2019:0304.See Also
http://www.nessus.org/u?1dad7a78
https://access.redhat.com/security/vulnerabilities/runcescape
https://bugzilla.redhat.com/show_bug.cgi?id=1664908
https://access.redhat.com/errata/RHSA-2019:0304
https://access.redhat.com/security/updates/classification/#important
Plugin Details
Severity: High
ID: 122111
File Name: redhat-RHSA-2019-0304.nasl
Version: 1.9
Type: local
Agent: unix
Family: Red Hat Local Security Checks
Published: 2/12/2019
Updated: 9/10/2025
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.9
Vendor
Vendor Severity: Important
CVSS v2
Risk Factor: High
Base Score: 9.3
Temporal Score: 8.1
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2019-5736
CVSS v3
Risk Factor: High
Base Score: 8.6
Temporal Score: 8.2
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:redhat:enterprise_linux:docker, cpe:/o:redhat:enterprise_linux:7, p-cpe:/a:redhat:enterprise_linux:docker-common, p-cpe:/a:redhat:enterprise_linux:docker-client, p-cpe:/a:redhat:enterprise_linux:docker-lvm-plugin, p-cpe:/a:redhat:enterprise_linux:docker-novolume-plugin, p-cpe:/a:redhat:enterprise_linux:docker-rhel-push-plugin, p-cpe:/a:redhat:enterprise_linux:docker-logrotate, p-cpe:/a:redhat:enterprise_linux:docker-v1.10-migrator
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 2/11/2019
Vulnerability Publication Date: 2/11/2019
Exploitable With
Metasploit (Docker Container Escape Via runC Overwrite)
Reference Information
CVE: CVE-2019-5736