Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

1 – 3 of 3 results

CVE-2023-2253

Medium priority

Some fixes available 5 of 6

A flaw was found in the `/v2/_catalog` endpoint in distribution/distribution, which accepts a parameter to control the maximum number of records returned (query string: `n`). This vulnerability allows a malicious user to submit an...

1 affected packages

docker-registry

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
docker-registry Fixed Fixed Fixed Fixed
Show less packages

CVE-2021-41190

Low priority

Some fixes available 9 of 18

The OCI Distribution Spec project defines an API protocol to facilitate and standardize the distribution of content. In the OCI Distribution Specification version 1.0.0 and prior, the Content-Type header alone was used to...

3 affected packages

containerd, docker-registry, docker.io

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
containerd Fixed Fixed Fixed Fixed Needs evaluation
docker-registry Not affected Not affected Not affected Not affected Not affected
docker.io Not affected Not affected Not affected Vulnerable Vulnerable
Show less packages

CVE-2017-11468

Low priority

Some fixes available 1 of 3

Docker Registry before 2.6.2 in Docker Distribution does not properly restrict the amount of content accepted from a user, which allows remote attackers to cause a denial of service (memory consumption) via the manifest endpoint.

1 affected packages

docker-registry

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
docker-registry Not affected Not affected Not affected Fixed
Show less packages