Denial of Service Vulnerability in Cloud Foundry Garden-runC Affected by Improper Disk Quota Enforcement
CVE-2018-1277

6.5MEDIUM

Key Information:

Vendor: Cloud Foundry
Status: Garden-runc
Vendor: CVE Published:; 30 April 2018

🔔 Create Cloud Foundry Vulnerability Alert

What is CVE-2018-1277?

Cloud Foundry Garden-runC versions earlier than 1.13.0 are susceptible to a vulnerability that improperly enforces disk quotas for Docker image layers. This oversight allows a remote authenticated user to upload a malicious Docker image that manipulates the allocated resources, surpassing the designated quota. Consequently, this can lead to potential denial of service (DoS) conditions on the Diego cell by consuming excessive space, destabilizing the availability of resources.

Affected Version(s)

Garden-runC 1.13.0

References

https://www.cloudfoundry.org/blog/cve-2018-1277/

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 30, 2018
Vulnerability Reserved
Dec 6, 2017

CVE-2018-1277 Data

JSON