PSF-2019-16

ADVISORY - docker

Summary

It is possible to inject email headers using CR or LF character.

The fix disallows CR and LF characters in email.headerregistry.Address arguments to guard against header injection attacks.

Common Weakness Enumeration (CWE)

Impacted images

Advisories

Docker

CREATED

7 years ago

UPDATED

5 hours ago

ADVISORY ID

PSF-2019-16

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY