DEBIAN-CVE-2026-35172
- Source
- https://security-tracker.debian.org/tracker/CVE-2026-35172
- Import Source
- https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-35172.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2026-35172
- Upstream
- Published
- 2026-04-06T20:16:25.607Z
- Modified
- 2026-04-12T18:01:05.227505Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Distribution is a toolkit to pack, ship, store, and deliver container content. Prior to 3.1.0, distribution can restore read access in repo a after an explicit delete when storage.cache.blobdescriptor: redis and storage.delete.enabled: true are both enabled. The delete path clears the shared digest descriptor but leaves stale repo-scoped membership behind, so a later Stat or Get from repo b repopulates the shared descriptor and makes the deleted blob readable from repo a again. This vulnerability is fixed in 3.1.0.
- References
Affected packages
Debian:11 / docker-registry
Package
- Name
- docker-registry
- Purl
- pkg:deb/debian/docker-registry?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Debian:12 / docker-registry
Package
- Name
- docker-registry
- Purl
- pkg:deb/debian/docker-registry?arch=source
Debian:13 / docker-registry
Package
- Name
- docker-registry
- Purl
- pkg:deb/debian/docker-registry?arch=source
Debian:14 / docker-registry
Package
- Name
- docker-registry
- Purl
- pkg:deb/debian/docker-registry?arch=source