Back to bug 1329450
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Trevor Jay | 2016-04-22 02:01:49 UTC | Depends On | 1329451 | |
| Trevor Jay | 2016-04-22 02:02:10 UTC | Depends On | 1329452 | |
| Trevor Jay | 2016-04-22 02:02:27 UTC | Depends On | 1329453 | |
| Trevor Jay | 2016-04-22 02:02:38 UTC | Depends On | 1329454 | |
| Trevor Jay | 2016-04-22 02:05:54 UTC | CC | tjay | |
| Tomas Hoger | 2016-04-22 06:55:59 UTC | Summary | CVE-2016-3697 privilege escalation via confusion of usernames and UIDs | CVE-2016-3697 docker: privilege escalation via confusion of usernames and UIDs |
| Lokesh Mandvekar | 2016-04-22 18:31:13 UTC | Depends On | 1329728 | |
| Salvatore Bonaccorso | 2016-04-23 05:53:35 UTC | CC | carnil | |
| Martin Prpič | 2016-05-10 07:29:43 UTC | Doc Text | It was found that Docker would launch containers under the specified UID instead of a username. An attacker able to launch a container could use this flaw to escalate their privileges to root within the launched container. | |
| Trevor Jay | 2016-11-03 15:16:46 UTC | Blocks | 1391583 | |
| PnT Account Manager | 2018-06-29 22:08:22 UTC | CC | kseifried | |
| PnT Account Manager | 2019-04-22 21:30:48 UTC | CC | tjay | |
| Product Security DevOps Team | 2019-06-08 02:50:53 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-06-08 02:50:53 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:47:33 UTC | Whiteboard | impact=moderate,public=20160422,reported=20160419,source=redhat,cvss2=6.0/AV:N/AC:M/Au:S/C:P/I:P/A:P,openshift-enterprise-3/Security=affected,rhel-7/docker=affected,fedora-all/docker=affected |
Back to bug 1329450