Docker golang:1.10.7-alpine3.7

Vulnerabilities

1 via 2 paths

Dependencies

14

Source

Group 6 Copy Created with Sketch. Docker

Target OS

alpine:3.7.1
Test your Docker Hub image against our market leading vulnerability database Sign up for free
Severity
  • 1
Status
  • 1
  • 0
  • 0

high severity

Out-of-bounds Write

  • Vulnerable module: musl/musl
  • Introduced through: musl/musl@1.1.18-r3 and musl/musl-utils@1.1.18-r3
  • Fixed in: 1.1.18-r4

Detailed paths

  • Introduced through: golang:1.10.7-alpine3.7@* musl/musl@1.1.18-r3
  • Introduced through: golang:1.10.7-alpine3.7@* musl/musl-utils@1.1.18-r3

NVD Description

Note: Versions mentioned in the description apply to the upstream musl package. See Remediation section below for Alpine:3.7 relevant versions.

musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source code.

Remediation

Upgrade Alpine:3.7 musl to version 1.1.18-r4 or higher.

References