SUSE-SU-2024:0586-2
Advisory lineage Upstream: 3 Downstream: 0
Published: 04 Apr 2024, 13:13
Last modified:04 Feb 2026, 03:19
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
04 Apr 2024, 13:13
Published
Vulnerability first disclosed
04 Feb 2026, 03:19
Last Modified
Vulnerability information updated
Description
Security update for docker This update for docker fixes the following issues: Vendor latest buildkit v0.11 including bugfixes for the following: * CVE-2024-23653: BuildKit API doesn't validate entitlement on container creation (bsc#1219438). * CVE-2024-23652: Fixed arbitrary deletion of files (bsc#1219268). * CVE-2024-23651: Fixed race condition in mount (bsc#1219267).
Affected Systems
- suse•docker&distro=SUSE Linux Enterprise Module for Containers 15 SP4
< 24.0.7_ce-150000.193.1
References (7)
- https://www.suse.com/support/update/announcement/2024/suse-su-20240586-2/
- https://bugzilla.suse.com/1219267
- https://bugzilla.suse.com/1219268
- https://bugzilla.suse.com/1219438
- https://www.suse.com/security/cve/CVE-2024-23651
- https://www.suse.com/security/cve/CVE-2024-23652
- https://www.suse.com/security/cve/CVE-2024-23653