GMS-2023-3981

ADVISORY - gitlab

Summary

Intel's RAPL (Running Average Power Limit) feature, introduced by the Sandy Bridge microarchitecture, provides software insights into hardware energy consumption. To facilitate this, Intel introduced the powercap framework in Linux kernel 3.13, which reads values via relevant MSRs (model specific registers) and provides unprivileged userspace access via sysfs.

Common Weakness Enumeration (CWE)

ADVISORY - gitlab

CWE-1035⁠

OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities

CWE-937⁠

OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

Impacted images

Advisories

GitLab

CREATED

11 months ago

UPDATED

10 months ago

ADVISORY ID

GMS-2023-3981

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-1035⁠CWE-937⁠

CVSS SCORE

N/Aunspecified

Package	Type	OS Name	OS Version	Affected Ranges	Fix Versions
github.com/docker/docker	golang	-	-	>=24.0.0,<24.0.7	23.0.8, 24.0.7, 20.10.27
github.com/docker/docker	golang	-	-	<20.10.27	23.0.8, 24.0.7, 20.10.27
github.com/docker/docker	golang	-	-	>=21.0.0,<23.0.8	23.0.8, 24.0.7, 20.10.27
github.com/docker/docker	golang	-	-	>=0.0.0-20230515144033-1331b8c39a60,<0.0.0-20231026075105-311b9ff0aa93	0.0.0-20231026075105-311b9ff0aa93

CVSS:2 Severity and metrics

No CVSS data available from this advisory.