Insecure dynamic library loading in docker (Alpine package)
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2019-14271 |
| CWE-ID | CWE-427 |
| Exploitation vector | Local |
| Public exploit | Public exploit code for vulnerability #1 is available. |
| Vulnerable software Subscribe |
docker (Alpine package) Operating systems & Components / Operating system package or component |
| Vendor | Alpine Linux Development Team |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) Insecure dynamic library loading
EUVDB-ID: #VU20969
Risk: Medium
CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2019-14271
CWE-ID:
CWE-427 - Uncontrolled Search Path Element
Exploit availability: Yes
DescriptionThe vulnerability allows a local user to compromise vulnerable system.
The vulnerability exists due to the application loads NSS libraries in docker cp
in an insecure manner. A local attacker can pass a specially crafted library file to the application and execute arbitrary code on the system with elevated privileges.
Install update from vendor's website.
Vulnerable software versionsdocker (Alpine package): 19.03.0-r0 - 19.03.0-r1
External linkshttp://git.alpinelinux.org/aports/commit/?id=d5a1f4da210f7b3b87c290a42453611e5d2afec9
http://git.alpinelinux.org/aports/commit/?id=24924763d56dd80da5430746a238868ab6cc20d5
http://git.alpinelinux.org/aports/commit/?id=7ae3ba3306050c36feea54cda9ecfc3f70988516
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
