/
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2014-9356

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2014-9356

CGA ID

CGA-6gx3-qx5h-g7f4

Severity

Unknown

Description

Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile.

References

  • https://images.chainguard.dev/security/CGA-6gx3-qx5h-g7f4
  • https://github.com/advisories/GHSA-vj3f-3286-r4pf
  • https://bugzilla.redhat.com/show_bug.cgi?id=1172761
  • http://www.securityfocus.com/archive/1/archive/1/534215/100/0/threaded
  • https://security-tracker.debian.org/tracker/CVE-2014-9356

Affected packages

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsPricingContact UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogEventsTrust CenterDocumentation