Ecosyste.ms: Advisories

Security Advisories: GSA_kwCzR0hTQS05OXBnLWdybTUtcXEzds4AA84V

Docker CLI leaks private registry credentials to registry-1.docker.io

Impact

A bug was found in the Docker CLI where running docker login my-private-registry.example.com with a misconfigured configuration file (typically ~/.docker/config.json) listing a credsStore or credHelpers that could not be executed would result in any provided credentials being sent to registry-1.docker.io rather than the intended private registry.

Patches

This bug has been fixed in Docker CLI 20.10.9. Users should update to this version as soon as possible.

Workarounds

Ensure that any configured credsStore or credHelpers entries in the configuration file reference an installed credential helper that is executable and on the PATH.

For more information

If you have any questions or comments about this advisory:

• Open an issue
• Email us at [email protected] if you think you’ve found a security bug

Permalink: https://github.com/advisories/GHSA-99pg-grm5-qq3v
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS05OXBnLWdybTUtcXEzds4AA84V
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: 6 months ago
Updated: 5 months ago

CVSS Score: 5.4
CVSS vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:N/A:N

Identifiers: GHSA-99pg-grm5-qq3v, CVE-2021-41092
References:

• https://github.com/docker/cli/security/advisories/GHSA-99pg-grm5-qq3v
• https://nvd.nist.gov/vuln/detail/CVE-2021-41092
• https://github.com/docker/cli/commit/893e52cf4ba4b048d72e99748e0f86b2767c6c6b
• https://cert-portal.siemens.com/productcert/pdf/ssa-222547.pdf
• https://lists.fedoraproject.org/archives/list/[email protected]/message/B5Q6G6I4W5COQE25QMC7FJY3I3PAYFBB
• https://lists.fedoraproject.org/archives/list/[email protected]/message/ZNFADTCHHYWVM6W4NJ6CB4FNFM2VMBIB
• https://github.com/advisories/GHSA-99pg-grm5-qq3v

Repository: https://github.com/docker/cli
Blast Radius: 22.8

Affected Packages