Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.mesos/mesos@1.6.2
purl pkg:maven/org.apache.mesos/mesos@1.6.2
Next non-vulnerable version 1.7.2
Latest non-vulnerable version 1.8.1
Risk 10.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-7juj-78y7-g7b6
Aliases:
CVE-2019-5736
Containment Errors (Container Errors) runc allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image, or (2) an existing container, to which the attacker previously had write access, that can be attached with docker exec. This occurs because of file-descriptor mishandling, related to `/proc/self/exe`.
1.7.1-rc1
Affected by 2 other vulnerabilities.
1.7.1
Affected by 1 other vulnerability.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-32mt-mbwm-bbca Improper Input Validation A specifically crafted Docker image running under the root user can overwrite the init helper binary of the container runtime and/or the command executor in Apache Mesos. A malicious actor can therefore gain root-level code execution on the host. CVE-2019-0204
GHSA-32w9-2qpc-5f9v
VCID-t39q-ds43-9kee Improper Restriction of Operations within the Bounds of a Memory Buffer When parsing a JSON payload with deeply nested JSON structures, the parser in Apache Mesos might overflow the stack due to unbounded recursion. CVE-2018-11793
GHSA-p2xq-vcm7-xjj6

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T20:53:01.033560+00:00 GitLab Importer Fixing VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.4.0
2026-04-16T20:52:39.035354+00:00 GitLab Importer Fixing VCID-t39q-ds43-9kee https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2018-11793.yml 38.4.0
2026-04-16T20:51:41.955929+00:00 GitLab Importer Affected by VCID-7juj-78y7-g7b6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-5736.yml 38.4.0
2026-04-16T01:28:02.174014+00:00 GHSA Importer Fixing VCID-t39q-ds43-9kee https://github.com/advisories/GHSA-p2xq-vcm7-xjj6 38.4.0
2026-04-11T22:03:50.886543+00:00 GitLab Importer Fixing VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.3.0
2026-04-11T22:03:27.573724+00:00 GitLab Importer Fixing VCID-t39q-ds43-9kee https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2018-11793.yml 38.3.0
2026-04-11T22:02:27.697325+00:00 GitLab Importer Affected by VCID-7juj-78y7-g7b6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-5736.yml 38.3.0
2026-04-11T12:57:19.865068+00:00 GHSA Importer Fixing VCID-t39q-ds43-9kee https://github.com/advisories/GHSA-p2xq-vcm7-xjj6 38.3.0
2026-04-02T22:16:50.760426+00:00 GitLab Importer Fixing VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.1.0
2026-04-02T22:16:29.031434+00:00 GitLab Importer Fixing VCID-t39q-ds43-9kee https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2018-11793.yml 38.1.0
2026-04-02T22:15:31.927641+00:00 GitLab Importer Affected by VCID-7juj-78y7-g7b6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-5736.yml 38.1.0
2026-04-02T13:49:42.775066+00:00 GHSA Importer Fixing VCID-t39q-ds43-9kee https://github.com/advisories/GHSA-p2xq-vcm7-xjj6 38.1.0
2026-04-01T16:33:00.285103+00:00 GitLab Importer Affected by VCID-7juj-78y7-g7b6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-5736.yml 38.0.0
2026-04-01T16:00:52.246402+00:00 GHSA Importer Fixing VCID-32mt-mbwm-bbca https://github.com/advisories/GHSA-32w9-2qpc-5f9v 38.0.0
2026-04-01T15:57:21.213079+00:00 GHSA Importer Fixing VCID-t39q-ds43-9kee https://github.com/advisories/GHSA-p2xq-vcm7-xjj6 38.0.0
2026-04-01T13:09:43.233223+00:00 GithubOSV Importer Fixing VCID-32mt-mbwm-bbca https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-32w9-2qpc-5f9v/GHSA-32w9-2qpc-5f9v.json 38.0.0
2026-04-01T13:04:30.213453+00:00 GithubOSV Importer Fixing VCID-t39q-ds43-9kee https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2019/03/GHSA-p2xq-vcm7-xjj6/GHSA-p2xq-vcm7-xjj6.json 38.0.0
2026-04-01T12:48:22.233969+00:00 GitLab Importer Fixing VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.0.0
2026-04-01T12:48:20.358360+00:00 GitLab Importer Fixing VCID-t39q-ds43-9kee https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2018-11793.yml 38.0.0