CVE-2014-3499

Published: 11 July 2014

Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

Priority

High

Status

Package Release Status
docker.io
Launchpad, Ubuntu, Debian
Upstream Needed

Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(RHEL specific)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was not-affected [RHEL specific])