vulnerability
Amazon Linux AMI: CVE-2021-21285: Security patch for docker (ALAS-2021-1550)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Feb 2, 2021 | Nov 16, 2021 | Nov 16, 2021 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Feb 2, 2021
Added
Nov 16, 2021
Modified
Nov 16, 2021
Description
In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon. Versions 20.10.3 and 19.03.15 contain patches that prevent the daemon from crashing.
Solution
amazon-linux-upgrade-docker
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.