Vigil@nce - Docker Moby: data loss via writes into /proc/scsi
April 2018 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can send commands to /proc/scsi via Docker Moby, in
order to make stored data unreachable.
Impacted products: Docker CE, openSUSE Leap.
Severity: 2/4.
Creation date: 08/02/2018.
DESCRIPTION OF THE VULNERABILITY
An attacker can send commands to /proc/scsi via Docker Moby, in
order to make stored data unreachable.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Docker-Moby-data-loss-via-writes-into-proc-scsi-25246