You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Findings for Container Security, High, [TheRedHatter/javagoof:Dockerfile]:Deserialization of Untrusted Data
Component Details
Exploit Maturity: no-known-exploit
Vulnerable Package: -
Current Version: -
Vulnerable Version(s): ><232-25+deb9u10
Vulnerable Path: >null
NVD Description
Note: Versions mentioned in the description apply to the upstream systemd package. See How to fix? for Debian:9 relevant versions.
A vulnerability in unit_deserialize of systemd allows an attacker to supply arbitrary state across systemd re-execution via NotifyAccess. This can be used to improperly influence systemd execution and possibly lead to root privilege escalation. Affected releases are systemd versions up to and including 239.
Findings for Container Security, High, [TheRedHatter/javagoof:Dockerfile]:Deserialization of Untrusted Data
Component Details
NVD Description
Note:
Versions mentioned in the description apply to the upstream
systemd
package.See
How to fix?
forDebian:9
relevant versions.A vulnerability in unit_deserialize of systemd allows an attacker to supply arbitrary state across systemd re-execution via NotifyAccess. This can be used to improperly influence systemd execution and possibly lead to root privilege escalation. Affected releases are systemd versions up to and including 239.
References
Origin : null
Type : null
Image Id : null
Snyk Project Status: Active
The text was updated successfully, but these errors were encountered: