Description
An improper treating of a numeric UID was found in Docker. By exploiting this vulnerability malicious users can escalate privileges. This vulnerability can be exploited locally via a numeric username in the password file.
Technical details
This vulnerability is related to libcontainer/user/user.go in runC.
Original advisories
Related products
CVE list
- CVE-2016-3697 warning
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!