|Category:||Ubuntu Local Security Checks|
|Title:||Ubuntu: Security Advisory for docker.io (USN-4589-2)|
|Summary:||The remote host is missing an update for the 'docker.io'; package(s) announced via the USN-4589-2 advisory.|
The remote host is missing an update for the 'docker.io'
package(s) announced via the USN-4589-2 advisory.
USN-4589-1 fixed a vulnerability in containerd. This update provides
the corresponding update for docker.io.
Original advisory details:
It was discovered that containerd could be made to expose sensitive
information when processing URLs in container image manifests. A
remote attacker could use this to trick the user and obtain the
user's registry credentials.
'docker.io' package(s) on Ubuntu 20.04 LTS, Ubuntu 18.04 LTS, Ubuntu 16.04 LTS.
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2020-15157|
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.