SUSE-SU-2025:0226-1

Advisory lineage Upstream: 4 Downstream: 0

Upstream

CVE-2024-23650 CVE-2024-23653 CVE-2024-29018 CVE-2024-41110

Published: 27 Jan 2025, 07:26

Last modified:04 Feb 2026, 03:20

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

27 Jan 2025, 07:26

Published

Vulnerability first disclosed

04 Feb 2026, 03:20

Last Modified

Vulnerability information updated

Description

Security update for docker-stable This update for docker-stable fixes the following issues: - CVE-2024-29018: Fixed external DNS request handling from 'internal' networks that could have led to data exfiltration (bsc#1234089). - CVE-2024-23650: Fixed possibile BuildKit daemon crash via malicious BuildKit client or frontend request (bsc#1219437).

Affected Systems

opensuse•docker-stable&distro=openSUSE Leap 15.6
< 24.0.9_ce-150000.1.11.1
suse•docker-stable&distro=SUSE Linux Enterprise Module for Containers 15 SP6
< 24.0.9_ce-150000.1.11.1

SUSE-SU-2025:0226-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (7)