Fluid Attacks Database

Description

privilege escalation

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
maven	org.apache.mesos:mesos	>=1.4.0 <=1.7.0	1.7.1
debian 12	lxc	>=0 <1:3.1.0+really3.0.3-4	1:3.1.0+really3.0.3-4
alpine v3.15	lxc	=0.7.4-r0 \|\| =0.7.4-r1 \|\| =0.7.4-r2 \|\| =0.7.4-r3 \|\| =0.7.4_rc1-r0 \|\| =0.8.0-r0 \|\| =0.8.0-r1 \|\| =0.8.0-r2 \|\| =0.8.0-r3 \|\| =0.8.0-r4 \|\| =0.8.0-r5 \|\| =0.8.0-r6 \|\| =0.8.0-r7 \|\| =0.8.0_rc1-r0 \|\| =0.8.0_rc2-r0 \|\| =0.9.0-r0 \|\| =0.9.0-r1 \|\| =0.9.0-r10 \|\| =0.9.0-r11 \|\| =0.9.0-r2 \|\| =0.9.0-r3 \|\| =0.9.0-r4 \|\| =0.9.0-r5 \|\| =0.9.0-r6 \|\| =0.9.0-r7 \|\| =0.9.0-r8 \|\| =0.9.0-r9 \|\| =1.0.0-r0 \|\| =1.0.0-r1 \|\| =1.0.0-r2 \|\| =1.0.0-r3 \|\| =1.0.0_rc4-r1 \|\| =1.0.0_rc4-r11 \|\| =1.0.1-r0 \|\| =1.0.2-r0 \|\| =1.0.2-r1 \|\| =1.0.3-r0 \|\| =1.0.3-r1 \|\| =1.0.4-r0 \|\| =1.0.5-r0 \|\| =1.0.6-r0 \|\| =1.0.6-r1 \|\| =1.0.6-r2 \|\| =1.0.6-r3 \|\| =1.0.7-r0 \|\| =1.1.0-r0 \|\| =1.1.1-r0 \|\| =1.1.2-r0 \|\| =1.1.2-r1 \|\| =1.1.2-r2 \|\| =1.1.2-r3 \|\| =1.1.3-r0 \|\| =1.1.3-r1 \|\| =1.1.3-r2 \|\| =1.1.5-r0 \|\| =1.1.5-r1 \|\| =1.1.5-r2 \|\| =1.1.5-r3 \|\| =1.1.5-r4 \|\| =1.1.5-r5 \|\| =1.1.5-r6 \|\| =2.0.1-r0 \|\| =2.0.3-r0 \|\| =2.0.3-r1 \|\| =2.0.3-r2 \|\| =2.0.3-r3 \|\| =2.0.4-r0 \|\| =2.0.4-r1 \|\| =2.0.4-r2 \|\| =2.0.5-r0 \|\| =2.0.5-r1 \|\| =2.0.5-r2 \|\| =2.0.6-r0 \|\| =2.0.6-r1 \|\| =2.0.7-r0 \|\| =2.0.7-r1 \|\| =2.0.7-r2 \|\| =2.0.7-r3 \|\| =2.0.7-r4 \|\| =2.0.7-r5 \|\| =2.0.8-r0 \|\| =2.0.8-r1 \|\| =2.1.0-r0 \|\| =2.1.0-r1 \|\| =2.1.1-r0 \|\| =2.1.1-r1 \|\| =2.1.1-r10 \|\| =2.1.1-r2 \|\| =2.1.1-r3 \|\| =2.1.1-r4 \|\| =2.1.1-r5 \|\| =2.1.1-r6 \|\| =2.1.1-r7 \|\| =2.1.1-r8 \|\| =2.1.1-r9 \|\| =3.1.0-r0 \|\| >=0 <3.1.0-r1	3.1.0-r1
alpine v3.18	lxc	=0.7.4-r0 \|\| =0.7.4-r1 \|\| =0.7.4-r2 \|\| =0.7.4-r3 \|\| =0.7.4_rc1-r0 \|\| =0.8.0-r0 \|\| =0.8.0-r1 \|\| =0.8.0-r2 \|\| =0.8.0-r3 \|\| =0.8.0-r4 \|\| =0.8.0-r5 \|\| =0.8.0-r6 \|\| =0.8.0-r7 \|\| =0.8.0_rc1-r0 \|\| =0.8.0_rc2-r0 \|\| =0.9.0-r0 \|\| =0.9.0-r1 \|\| =0.9.0-r10 \|\| =0.9.0-r11 \|\| =0.9.0-r2 \|\| =0.9.0-r3 \|\| =0.9.0-r4 \|\| =0.9.0-r5 \|\| =0.9.0-r6 \|\| =0.9.0-r7 \|\| =0.9.0-r8 \|\| =0.9.0-r9 \|\| =1.0.0-r0 \|\| =1.0.0-r1 \|\| =1.0.0-r2 \|\| =1.0.0-r3 \|\| =1.0.0_rc4-r1 \|\| =1.0.0_rc4-r11 \|\| =1.0.1-r0 \|\| =1.0.2-r0 \|\| =1.0.2-r1 \|\| =1.0.3-r0 \|\| =1.0.3-r1 \|\| =1.0.4-r0 \|\| =1.0.5-r0 \|\| =1.0.6-r0 \|\| =1.0.6-r1 \|\| =1.0.6-r2 \|\| =1.0.6-r3 \|\| =1.0.7-r0 \|\| =1.1.0-r0 \|\| =1.1.1-r0 \|\| =1.1.2-r0 \|\| =1.1.2-r1 \|\| =1.1.2-r2 \|\| =1.1.2-r3 \|\| =1.1.3-r0 \|\| =1.1.3-r1 \|\| =1.1.3-r2 \|\| =1.1.5-r0 \|\| =1.1.5-r1 \|\| =1.1.5-r2 \|\| =1.1.5-r3 \|\| =1.1.5-r4 \|\| =1.1.5-r5 \|\| =1.1.5-r6 \|\| =2.0.1-r0 \|\| =2.0.3-r0 \|\| =2.0.3-r1 \|\| =2.0.3-r2 \|\| =2.0.3-r3 \|\| =2.0.4-r0 \|\| =2.0.4-r1 \|\| =2.0.4-r2 \|\| =2.0.5-r0 \|\| =2.0.5-r1 \|\| =2.0.5-r2 \|\| =2.0.6-r0 \|\| =2.0.6-r1 \|\| =2.0.7-r0 \|\| =2.0.7-r1 \|\| =2.0.7-r2 \|\| =2.0.7-r3 \|\| =2.0.7-r4 \|\| =2.0.7-r5 \|\| =2.0.8-r0 \|\| =2.0.8-r1 \|\| =2.1.0-r0 \|\| =2.1.0-r1 \|\| =2.1.1-r0 \|\| =2.1.1-r1 \|\| =2.1.1-r10 \|\| =2.1.1-r2 \|\| =2.1.1-r3 \|\| =2.1.1-r4 \|\| =2.1.1-r5 \|\| =2.1.1-r6 \|\| =2.1.1-r7 \|\| =2.1.1-r8 \|\| =2.1.1-r9 \|\| =3.1.0-r0 \|\| >=0 <3.1.0-r1	3.1.0-r1
alpine v3.19	lxc	=0.7.4-r0 \|\| =0.7.4-r1 \|\| =0.7.4-r2 \|\| =0.7.4-r3 \|\| =0.7.4_rc1-r0 \|\| =0.8.0-r0 \|\| =0.8.0-r1 \|\| =0.8.0-r2 \|\| =0.8.0-r3 \|\| =0.8.0-r4 \|\| =0.8.0-r5 \|\| =0.8.0-r6 \|\| =0.8.0-r7 \|\| =0.8.0_rc1-r0 \|\| =0.8.0_rc2-r0 \|\| =0.9.0-r0 \|\| =0.9.0-r1 \|\| =0.9.0-r10 \|\| =0.9.0-r11 \|\| =0.9.0-r2 \|\| =0.9.0-r3 \|\| =0.9.0-r4 \|\| =0.9.0-r5 \|\| =0.9.0-r6 \|\| =0.9.0-r7 \|\| =0.9.0-r8 \|\| =0.9.0-r9 \|\| =1.0.0-r0 \|\| =1.0.0-r1 \|\| =1.0.0-r2 \|\| =1.0.0-r3 \|\| =1.0.0_rc4-r1 \|\| =1.0.0_rc4-r11 \|\| =1.0.1-r0 \|\| =1.0.2-r0 \|\| =1.0.2-r1 \|\| =1.0.3-r0 \|\| =1.0.3-r1 \|\| =1.0.4-r0 \|\| =1.0.5-r0 \|\| =1.0.6-r0 \|\| =1.0.6-r1 \|\| =1.0.6-r2 \|\| =1.0.6-r3 \|\| =1.0.7-r0 \|\| =1.1.0-r0 \|\| =1.1.1-r0 \|\| =1.1.2-r0 \|\| =1.1.2-r1 \|\| =1.1.2-r2 \|\| =1.1.2-r3 \|\| =1.1.3-r0 \|\| =1.1.3-r1 \|\| =1.1.3-r2 \|\| =1.1.5-r0 \|\| =1.1.5-r1 \|\| =1.1.5-r2 \|\| =1.1.5-r3 \|\| =1.1.5-r4 \|\| =1.1.5-r5 \|\| =1.1.5-r6 \|\| =2.0.1-r0 \|\| =2.0.3-r0 \|\| =2.0.3-r1 \|\| =2.0.3-r2 \|\| =2.0.3-r3 \|\| =2.0.4-r0 \|\| =2.0.4-r1 \|\| =2.0.4-r2 \|\| =2.0.5-r0 \|\| =2.0.5-r1 \|\| =2.0.5-r2 \|\| =2.0.6-r0 \|\| =2.0.6-r1 \|\| =2.0.7-r0 \|\| =2.0.7-r1 \|\| =2.0.7-r2 \|\| =2.0.7-r3 \|\| =2.0.7-r4 \|\| =2.0.7-r5 \|\| =2.0.8-r0 \|\| =2.0.8-r1 \|\| =2.1.0-r0 \|\| =2.1.0-r1 \|\| =2.1.1-r0 \|\| =2.1.1-r1 \|\| =2.1.1-r10 \|\| =2.1.1-r2 \|\| =2.1.1-r3 \|\| =2.1.1-r4 \|\| =2.1.1-r5 \|\| =2.1.1-r6 \|\| =2.1.1-r7 \|\| =2.1.1-r8 \|\| =2.1.1-r9 \|\| =3.1.0-r0 \|\| >=0 <3.1.0-r1	3.1.0-r1
alpine v3.22	lxc	=0.7.4-r0 \|\| =0.7.4-r1 \|\| =0.7.4-r2 \|\| =0.7.4-r3 \|\| =0.7.4_rc1-r0 \|\| =0.8.0-r0 \|\| =0.8.0-r1 \|\| =0.8.0-r2 \|\| =0.8.0-r3 \|\| =0.8.0-r4 \|\| =0.8.0-r5 \|\| =0.8.0-r6 \|\| =0.8.0-r7 \|\| =0.8.0_rc1-r0 \|\| =0.8.0_rc2-r0 \|\| =0.9.0-r0 \|\| =0.9.0-r1 \|\| =0.9.0-r10 \|\| =0.9.0-r11 \|\| =0.9.0-r2 \|\| =0.9.0-r3 \|\| =0.9.0-r4 \|\| =0.9.0-r5 \|\| =0.9.0-r6 \|\| =0.9.0-r7 \|\| =0.9.0-r8 \|\| =0.9.0-r9 \|\| =1.0.0-r0 \|\| =1.0.0-r1 \|\| =1.0.0-r2 \|\| =1.0.0-r3 \|\| =1.0.0_rc4-r1 \|\| =1.0.0_rc4-r11 \|\| =1.0.1-r0 \|\| =1.0.2-r0 \|\| =1.0.2-r1 \|\| =1.0.3-r0 \|\| =1.0.3-r1 \|\| =1.0.4-r0 \|\| =1.0.5-r0 \|\| =1.0.6-r0 \|\| =1.0.6-r1 \|\| =1.0.6-r2 \|\| =1.0.6-r3 \|\| =1.0.7-r0 \|\| =1.1.0-r0 \|\| =1.1.1-r0 \|\| =1.1.2-r0 \|\| =1.1.2-r1 \|\| =1.1.2-r2 \|\| =1.1.2-r3 \|\| =1.1.3-r0 \|\| =1.1.3-r1 \|\| =1.1.3-r2 \|\| =1.1.5-r0 \|\| =1.1.5-r1 \|\| =1.1.5-r2 \|\| =1.1.5-r3 \|\| =1.1.5-r4 \|\| =1.1.5-r5 \|\| =1.1.5-r6 \|\| =2.0.1-r0 \|\| =2.0.3-r0 \|\| =2.0.3-r1 \|\| =2.0.3-r2 \|\| =2.0.3-r3 \|\| =2.0.4-r0 \|\| =2.0.4-r1 \|\| =2.0.4-r2 \|\| =2.0.5-r0 \|\| =2.0.5-r1 \|\| =2.0.5-r2 \|\| =2.0.6-r0 \|\| =2.0.6-r1 \|\| =2.0.7-r0 \|\| =2.0.7-r1 \|\| =2.0.7-r2 \|\| =2.0.7-r3 \|\| =2.0.7-r4 \|\| =2.0.7-r5 \|\| =2.0.8-r0 \|\| =2.0.8-r1 \|\| =2.1.0-r0 \|\| =2.1.0-r1 \|\| =2.1.1-r0 \|\| =2.1.1-r1 \|\| =2.1.1-r10 \|\| =2.1.1-r2 \|\| =2.1.1-r3 \|\| =2.1.1-r4 \|\| =2.1.1-r5 \|\| =2.1.1-r6 \|\| =2.1.1-r7 \|\| =2.1.1-r8 \|\| =2.1.1-r9 \|\| =3.1.0-r0 \|\| >=0 <3.1.0-r1	3.1.0-r1
debian 13	lxc	>=0 <1:3.1.0+really3.0.3-4	1:3.1.0+really3.0.3-4
debian 14	lxc	>=0 <1:3.1.0+really3.0.3-4	1:3.1.0+really3.0.3-4
debian 11	runc	>=0 <1.0.0~rc6+dfsg1-2	1.0.0~rc6+dfsg1-2
debian 12	runc	>=0 <1.0.0~rc6+dfsg1-2	1.0.0~rc6+dfsg1-2

1-10 of 27

Aliases

1. CVE-2019-57362. NVD-2019-57363. OSV-2019-57364. OSV-DEBIAN-2019-57365. OSV-ALPINE-2019-57366. GCVE-2019-57367. SECURITY-TRACKER-CVE-2019-57368. SECURITY-CVE-2019-5736

References

1. http://www.securityfocus.com/bid/1069762. https://bugzilla.suse.com/show_bug.cgi?id=11219673. https://github.com/docker/docker-ce/releases/tag/v18.09.24. https://www.exploit-db.com/exploits/46359/5. https://www.exploit-db.com/exploits/46369/6. https://vulncheck.com/cve/CVE-2019-57367. https://github.com/q3k/cve-2019-5736-poc8. https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/local/docker_runc_escape.rb

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.