Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2016-5195 | 7.2 |
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in Oc
|
17-01-2023 - 21:00 | 10-11-2016 - 21:59 | |
CVE-2019-10214 | 4.3 |
The containers/image library used by the container tools Podman, Buildah, and Skopeo in Red Hat Enterprise Linux version 8 and CRI-O in OpenShift Container Platform, does not enforce TLS connections to the container registry authorization service. An
|
28-10-2021 - 13:58 | 25-11-2019 - 11:15 | |
CVE-2018-16873 | 6.8 |
In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically,
|
25-03-2021 - 16:43 | 14-12-2018 - 14:29 | |
CVE-2018-16874 | 6.8 |
In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both '{' and '}' characters). Specifically, it is only v
|
22-03-2021 - 18:51 | 14-12-2018 - 14:29 | |
CVE-2016-8859 | 7.5 |
Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write.
|
27-07-2020 - 03:15 | 13-02-2017 - 18:59 | |
CVE-2017-1002101 | 5.5 |
In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type (including non-privileged pods, subject to file permissions) can access files/directories outs
|
09-10-2019 - 23:21 | 13-03-2018 - 17:29 | |
CVE-2018-1002105 | 7.5 |
In all Kubernetes versions prior to v1.10.11, v1.11.5, and v1.12.3, incorrect handling of error responses to proxied upgrade requests in the kube-apiserver allowed specially crafted requests to establish a connection through the Kubernetes API server
|
28-06-2019 - 21:15 | 05-12-2018 - 21:29 |