Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.mesos/mesos@1.5.3
purl pkg:maven/org.apache.mesos/mesos@1.5.3
Next non-vulnerable version 1.7.2
Latest non-vulnerable version 1.8.1
Risk 10.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-7juj-78y7-g7b6
Aliases:
CVE-2019-5736
Containment Errors (Container Errors) runc allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image, or (2) an existing container, to which the attacker previously had write access, that can be attached with docker exec. This occurs because of file-descriptor mishandling, related to `/proc/self/exe`.
1.7.1-rc1
Affected by 2 other vulnerabilities.
1.7.1
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (1)
Vulnerability Summary Aliases
VCID-32mt-mbwm-bbca Improper Input Validation A specifically crafted Docker image running under the root user can overwrite the init helper binary of the container runtime and/or the command executor in Apache Mesos. A malicious actor can therefore gain root-level code execution on the host. CVE-2019-0204
GHSA-32w9-2qpc-5f9v

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T20:53:01.018223+00:00 GitLab Importer Fixing VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.4.0
2026-04-16T20:51:41.946293+00:00 GitLab Importer Affected by VCID-7juj-78y7-g7b6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-5736.yml 38.4.0
2026-04-11T22:03:50.869158+00:00 GitLab Importer Fixing VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.3.0
2026-04-11T22:02:27.686974+00:00 GitLab Importer Affected by VCID-7juj-78y7-g7b6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-5736.yml 38.3.0
2026-04-02T22:16:50.745059+00:00 GitLab Importer Fixing VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.1.0
2026-04-02T22:15:31.917932+00:00 GitLab Importer Affected by VCID-7juj-78y7-g7b6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-5736.yml 38.1.0
2026-04-01T16:33:00.273904+00:00 GitLab Importer Affected by VCID-7juj-78y7-g7b6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-5736.yml 38.0.0
2026-04-01T16:00:52.182115+00:00 GHSA Importer Fixing VCID-32mt-mbwm-bbca https://github.com/advisories/GHSA-32w9-2qpc-5f9v 38.0.0
2026-04-01T13:09:43.218483+00:00 GithubOSV Importer Fixing VCID-32mt-mbwm-bbca https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-32w9-2qpc-5f9v/GHSA-32w9-2qpc-5f9v.json 38.0.0
2026-04-01T12:48:22.232428+00:00 GitLab Importer Fixing VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.0.0