CVE-2024-23651
Summary
| CVE | CVE-2024-23651 |
|---|---|
| State | PUBLISHED |
| Assigner | Unknown |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2024-01-31 22:15:00 UTC |
| Updated | 2024-02-01 03:18:00 UTC |
| Description | Description unavailable. |
Risk And Classification
Problem Types: CWE-362
There are no known software configurations currently associated with this CVE in NVD or the CVE Program record.
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| exec: add extra validation for submount sources by tonistiigi · Pull Request #4604 · moby/buildkit · GitHub | github.com | ||
| Possible race condition with accessing subpaths from cache mounts · Advisory · moby/buildkit · GitHub | github.com | ||
| Release v0.12.5 · moby/buildkit · GitHub | github.com | ||
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 357303 Amazon Linux Security Advisory for docker : ALAS2023-2024-542
- 379337 Docker Desktop Runc and BuildKit Vulnerability
- 379338 Docker Engine Runc and BuildKit Multiple Vulnerabilities
- 510713 Alpine Linux Security Update for singularity
- 510714 Alpine Linux Security Update for buildkit
- 510715 Alpine Linux Security Update for docker
- 510716 Alpine Linux Security Update for docker
- 6140129 AWS Bottlerocket Security Update for docker-engine (GHSA-r4j7-rqv2-v99p)
- 755818 SUSE Enterprise Linux Security Update for docker (SUSE-SU-2024:0586-1)
- 756053 SUSE Enterprise Linux Security Update for docker (SUSE-SU-2024:0586-2)
- 907934 Common Base Linux Mariner (CBL-Mariner) Security Update for moby-engine (34085)
- 907977 Common Base Linux Mariner (CBL-Mariner) Security Update for moby-engine (34085-1)
- 997023 GO (Go) Security Update for github.com/moby/buildkit (GHSA-m3r6-h7wv-7xxv)