Aleksa Sarai discovered that Docker was vulnerable to a directory traversal attack. An attacker could use this vulnerability to read and write arbitrary files on the host filesystem as root.
{ "availability": "No subscription required", "binaries": [ { "docker-doc": "18.09.7-0ubuntu1~16.04.4", "docker.io": "18.09.7-0ubuntu1~16.04.4", "golang-github-docker-docker-dev": "18.09.7-0ubuntu1~16.04.4", "golang-docker-dev": "18.09.7-0ubuntu1~16.04.4", "vim-syntax-docker": "18.09.7-0ubuntu1~16.04.4" } ] }
{ "availability": "No subscription required", "binaries": [ { "docker-doc": "18.09.7-0ubuntu1~18.04.3", "docker.io": "18.09.7-0ubuntu1~18.04.3", "golang-github-docker-docker-dev": "18.09.7-0ubuntu1~18.04.3", "golang-docker-dev": "18.09.7-0ubuntu1~18.04.3", "vim-syntax-docker": "18.09.7-0ubuntu1~18.04.3" } ] }