DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-36621

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-36621

CGA ID

CGA-vr3f-c957-gvx4

Severity

6.5

Medium

CVSS V3

Summary

Moby Race Condition vulnerability

Description

moby v25.0.5 is affected by a Race Condition in builder/builder-next/adapters/snapshot/layer.go. The vulnerability could be used to trigger concurrent builds that call the EnsureLayer function resulting in resource leaks/exhaustion.

References

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images