CVE-2014-6408 Information

Description

Docker 1.3.0 through 1.3.1 allows remote attackers to modify the default run profile of image containers and possibly bypass the container by applying unspecified security options to an image.

Reference

http://lists.fedoraproject.org/pipermail/package-announce/2014-December/145154.html http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00009.html http://secunia.com/advisories/60171 http://secunia.com/advisories/60241 http://www.openwall.com/lists/oss-security/2014/11/24/5 https://docs.docker.com/v1.3/release-notes/