Apache Software Foundation Mesos 1.8.0 Dev

CPE Details

Apache Software Foundation Mesos 1.8.0 Dev
1.8.0
2019-03-08
17h08 +00:00
2019-03-08
17h08 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:apache:mesos:1.8.0:dev:*:*:*:*:*:*

Informations

Vendor

apache

Product

mesos

Version

1.8.0

Update

dev

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2019-0204 2019-03-25 20h43 +00:00 A specifically crafted Docker image running under the root user can overwrite the init helper binary of the container runtime and/or the command executor in Apache Mesos versions pre-1.4.x, 1.4.0 to 1.4.2, 1.5.0 to 1.5.2, 1.6.0 to 1.6.1, and 1.7.0 to 1.7.1. A malicious actor can therefore gain root-level code execution on the host.
7.8
High
CVE-2018-11793 2019-03-05 21h00 +00:00 When parsing a JSON payload with deeply nested JSON structures, the parser in Apache Mesos versions pre-1.4.x, 1.4.0 to 1.4.2, 1.5.0 to 1.5.1, 1.6.0 to 1.6.1, and 1.7.0 might overflow the stack due to unbounded recursion. A malicious actor can therefore cause a denial of service of Mesos masters rendering the Mesos-controlled cluster inoperable.
7.5
High