ubuntu-cve-2024-24557
Vulnerability from osv_ubuntu
Published
2024-02-01 17:15
Modified
2026-05-20 15:07
Summary
Details

Moby is an open-source project created by Docker to enable software containerization. The classic builder cache system is prone to cache poisoning if the image is built FROM scratch. Also, changes to some instructions (most important being HEALTHCHECK and ONBUILD) would not cause a cache miss. An attacker with the knowledge of the Dockerfile someone is using could poison their cache by making them pull a specially crafted image that would be considered as a valid cache candidate for some build steps. 23.0+ users are only affected if they explicitly opted out of Buildkit (DOCKER_BUILDKIT=0 environment variable) or are using the /build API endpoint. All users on versions older than 23.0 could be impacted. Image build API endpoint (/build) and ImageBuild function from github.com/docker/docker/client is also affected as it the uses classic builder by default. Patches are included in 24.0.9 and 25.0.2 releases.


{
  "affected": [
    {
      "ecosystem_specific": {
        "binaries": [
          {
            "binary_name": "docker.io",
            "binary_version": "20.10.21-0ubuntu1~18.04.3+esm3"
          },
          {
            "binary_name": "golang-docker-dev",
            "binary_version": "20.10.21-0ubuntu1~18.04.3+esm3"
          },
          {
            "binary_name": "golang-github-docker-docker-dev",
            "binary_version": "20.10.21-0ubuntu1~18.04.3+esm3"
          },
          {
            "binary_name": "vim-syntax-docker",
            "binary_version": "20.10.21-0ubuntu1~18.04.3+esm3"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:18.04:LTS",
        "name": "docker.io",
        "purl": "pkg:deb/ubuntu/docker.io@20.10.21-0ubuntu1~18.04.3+esm3?arch=source\u0026distro=esm-apps/bionic"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "1.13.1-0ubuntu6",
        "17.03.2-0ubuntu1",
        "17.03.2-0ubuntu3",
        "17.03.2-0ubuntu5",
        "17.12.1-0ubuntu1",
        "18.06.1-0ubuntu1~18.04.1",
        "18.06.1-0ubuntu1.2~18.04.1",
        "18.09.2-0ubuntu1~18.04.1",
        "18.09.5-0ubuntu1~18.04.2",
        "18.09.7-0ubuntu1~18.04.1",
        "18.09.7-0ubuntu1~18.04.3",
        "18.09.7-0ubuntu1~18.04.4",
        "19.03.6-0ubuntu1~18.04.1",
        "19.03.6-0ubuntu1~18.04.2",
        "19.03.6-0ubuntu1~18.04.3",
        "20.10.2-0ubuntu1~18.04.2",
        "20.10.2-0ubuntu1~18.04.3",
        "20.10.7-0ubuntu1~18.04.1",
        "20.10.7-0ubuntu1~18.04.2",
        "20.10.7-0ubuntu5~18.04.2",
        "20.10.7-0ubuntu5~18.04.3",
        "20.10.12-0ubuntu2~18.04.1",
        "20.10.21-0ubuntu1~18.04.2",
        "20.10.21-0ubuntu1~18.04.3",
        "20.10.21-0ubuntu1~18.04.3+esm1",
        "20.10.21-0ubuntu1~18.04.3+esm2",
        "20.10.21-0ubuntu1~18.04.3+esm3"
      ]
    },
    {
      "ecosystem_specific": {
        "binaries": [
          {
            "binary_name": "golang-docker-dev",
            "binary_version": "20.10.21-0ubuntu1~20.04.6+esm2"
          },
          {
            "binary_name": "golang-github-docker-docker-dev",
            "binary_version": "20.10.21-0ubuntu1~20.04.6+esm2"
          },
          {
            "binary_name": "vim-syntax-docker",
            "binary_version": "20.10.21-0ubuntu1~20.04.6+esm2"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:20.04:LTS",
        "name": "docker.io",
        "purl": "pkg:deb/ubuntu/docker.io@20.10.21-0ubuntu1~20.04.6+esm2?arch=source\u0026distro=esm-apps/focal"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "19.03.2-0ubuntu1",
        "19.03.6-0ubuntu1",
        "19.03.8-0ubuntu1",
        "19.03.8-0ubuntu1.20.04",
        "19.03.8-0ubuntu1.20.04.1",
        "19.03.8-0ubuntu1.20.04.2",
        "20.10.2-0ubuntu1~20.04.2",
        "20.10.2-0ubuntu1~20.04.3",
        "20.10.7-0ubuntu1~20.04.1",
        "20.10.7-0ubuntu1~20.04.2",
        "20.10.7-0ubuntu5~20.04.1",
        "20.10.7-0ubuntu5~20.04.2",
        "20.10.12-0ubuntu2~20.04.1",
        "20.10.21-0ubuntu1~20.04.1",
        "20.10.21-0ubuntu1~20.04.2",
        "20.10.21-0ubuntu1~20.04.4",
        "20.10.21-0ubuntu1~20.04.5",
        "20.10.21-0ubuntu1~20.04.6",
        "20.10.21-0ubuntu1~20.04.6+esm1",
        "20.10.21-0ubuntu1~20.04.6+esm2"
      ]
    },
    {
      "ecosystem_specific": {
        "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
        "binaries": [
          {
            "binary_name": "docker.io",
            "binary_version": "26.1.3-0ubuntu1~20.04.1+esm1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:20.04:LTS",
        "name": "docker.io-app",
        "purl": "pkg:deb/ubuntu/docker.io-app@26.1.3-0ubuntu1~20.04.1+esm1?arch=source\u0026distro=esm-apps/focal"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "26.1.3-0ubuntu1~20.04.1+esm1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "20.10.25-0ubuntu1~20.04.1",
        "20.10.25-0ubuntu1~20.04.2",
        "24.0.5-0ubuntu1~20.04.1",
        "24.0.7-0ubuntu2~20.04.1",
        "26.1.3-0ubuntu1~20.04.1"
      ]
    },
    {
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "docker.io",
            "binary_version": "27.5.1-0ubuntu3~22.04.2"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:22.04:LTS",
        "name": "docker.io-app",
        "purl": "pkg:deb/ubuntu/docker.io-app@27.5.1-0ubuntu3~22.04.2?arch=source\u0026distro=jammy"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "27.5.1-0ubuntu3~22.04.2"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "20.10.25-0ubuntu1~22.04.1",
        "20.10.25-0ubuntu1~22.04.2",
        "24.0.5-0ubuntu1~22.04.1",
        "24.0.7-0ubuntu2~22.04.1",
        "26.1.3-0ubuntu1~22.04.1",
        "27.5.1-0ubuntu3~22.04.1"
      ]
    },
    {
      "ecosystem_specific": {
        "binaries": [
          {
            "binary_name": "golang-docker-dev",
            "binary_version": "20.10.21-0ubuntu1~22.04.8+esm1"
          },
          {
            "binary_name": "golang-github-docker-docker-dev",
            "binary_version": "20.10.21-0ubuntu1~22.04.8+esm1"
          },
          {
            "binary_name": "vim-syntax-docker",
            "binary_version": "20.10.21-0ubuntu1~22.04.8+esm1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:22.04:LTS",
        "name": "docker.io",
        "purl": "pkg:deb/ubuntu/docker.io@20.10.21-0ubuntu1~22.04.8+esm1?arch=source\u0026distro=esm-apps/jammy"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "20.10.7-0ubuntu5",
        "20.10.7-0ubuntu7",
        "20.10.12-0ubuntu1",
        "20.10.12-0ubuntu2",
        "20.10.12-0ubuntu3",
        "20.10.12-0ubuntu3+gke1.24.1",
        "20.10.12-0ubuntu4",
        "20.10.21-0ubuntu1~22.04.2",
        "20.10.21-0ubuntu1~22.04.3",
        "20.10.21-0ubuntu1~22.04.5",
        "20.10.21-0ubuntu1~22.04.6",
        "20.10.21-0ubuntu1~22.04.7",
        "20.10.21-0ubuntu1~22.04.7+esm1",
        "20.10.21-0ubuntu1~22.04.7+esm2",
        "20.10.21-0ubuntu1~22.04.8",
        "20.10.21-0ubuntu1~22.04.8+esm1"
      ]
    },
    {
      "ecosystem_specific": {
        "availability": "No subscription required",
        "binaries": [
          {
            "binary_name": "docker.io",
            "binary_version": "27.5.1-0ubuntu3~24.04.2"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:24.04:LTS",
        "name": "docker.io-app",
        "purl": "pkg:deb/ubuntu/docker.io-app@27.5.1-0ubuntu3~24.04.2?arch=source\u0026distro=noble"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "27.5.1-0ubuntu3~24.04.2"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "24.0.5-0ubuntu1",
        "24.0.7-0ubuntu1",
        "24.0.7-0ubuntu2",
        "24.0.7-0ubuntu3",
        "24.0.7-0ubuntu4",
        "24.0.7-0ubuntu4.1",
        "26.1.3-0ubuntu1~24.04.1",
        "27.5.1-0ubuntu3~24.04.1"
      ]
    },
    {
      "ecosystem_specific": {
        "binaries": [
          {
            "binary_name": "golang-github-docker-docker-dev",
            "binary_version": "20.10.25+dfsg1-2ubuntu1.24.04.1+esm1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:Pro:24.04:LTS",
        "name": "docker.io",
        "purl": "pkg:deb/ubuntu/docker.io@20.10.25+dfsg1-2ubuntu1.24.04.1+esm1?arch=source\u0026distro=esm-apps/noble"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "20.10.24+dfsg1-1ubuntu2",
        "20.10.25+dfsg1-2ubuntu1",
        "20.10.25+dfsg1-2ubuntu1+esm1",
        "20.10.25+dfsg1-2ubuntu1+esm2",
        "20.10.25+dfsg1-2ubuntu1.24.04.1",
        "20.10.25+dfsg1-2ubuntu1.24.04.1+esm1"
      ]
    },
    {
      "ecosystem_specific": {
        "binaries": [
          {
            "binary_name": "golang-github-docker-docker-dev",
            "binary_version": "26.1.5+dfsg1-9ubuntu1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:25.10",
        "name": "docker.io",
        "purl": "pkg:deb/ubuntu/docker.io@26.1.5+dfsg1-9ubuntu1?arch=source\u0026distro=questing"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "26.1.5+dfsg1-9ubuntu1"
      ]
    },
    {
      "ecosystem_specific": {
        "binaries": [
          {
            "binary_name": "golang-github-docker-docker-dev",
            "binary_version": "27.5.1+dfsg4-2ubuntu1"
          }
        ]
      },
      "package": {
        "ecosystem": "Ubuntu:26.04:LTS",
        "name": "docker.io",
        "purl": "pkg:deb/ubuntu/docker.io@27.5.1+dfsg4-2ubuntu1?arch=source\u0026distro=resolute"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "26.1.5+dfsg1-9ubuntu1",
        "27.5.1+dfsg4-1ubuntu1",
        "27.5.1+dfsg4-2ubuntu1"
      ]
    }
  ],
  "aliases": [],
  "details": "Moby is an open-source project created by Docker to enable software containerization. The classic builder cache system is prone to cache poisoning if the image is built FROM scratch. Also, changes to some instructions (most important being HEALTHCHECK and ONBUILD) would not cause a cache miss. An attacker with the knowledge of the Dockerfile someone is using could poison their cache by making them pull a specially crafted image that would be considered as a valid cache candidate for some build steps. 23.0+ users are only affected if they explicitly opted out of Buildkit (DOCKER_BUILDKIT=0 environment variable) or are using the /build API endpoint. All users on versions older than 23.0 could be impacted. Image build API endpoint (/build) and ImageBuild function from github.com/docker/docker/client is also affected as it the uses classic builder by default. Patches are included in 24.0.9 and 25.0.2 releases.",
  "id": "UBUNTU-CVE-2024-24557",
  "modified": "2026-05-20T15:07:36Z",
  "published": "2024-02-01T17:15:00Z",
  "references": [
    {
      "type": "REPORT",
      "url": "https://ubuntu.com/security/CVE-2024-24557"
    },
    {
      "type": "REPORT",
      "url": "https://github.com/moby/moby/security/advisories/GHSA-xw73-rw38-6vjc"
    },
    {
      "type": "REPORT",
      "url": "https://github.com/moby/moby/commit/3e230cfdcc989dc524882f6579f9e0dac77400ae"
    },
    {
      "type": "REPORT",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-24557"
    }
  ],
  "related": [],
  "schema_version": "1.7.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:L/I:H/A:L",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    },
    {
      "score": "medium",
      "type": "Ubuntu"
    }
  ],
  "upstream": [
    "CVE-2024-24557"
  ]
}



Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…