Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.mesos/mesos@1.7.1
purl pkg:maven/org.apache.mesos/mesos@1.7.1
Next non-vulnerable version 1.7.2
Latest non-vulnerable version 1.8.1
Risk 4.2
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-32mt-mbwm-bbca
Aliases:
CVE-2019-0204
GHSA-32w9-2qpc-5f9v
Improper Input Validation A specifically crafted Docker image running under the root user can overwrite the init helper binary of the container runtime and/or the command executor in Apache Mesos. A malicious actor can therefore gain root-level code execution on the host.
1.7.2
Affected by 0 other vulnerabilities.
1.8.1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-7juj-78y7-g7b6 Containment Errors (Container Errors) runc allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacker-controlled image, or (2) an existing container, to which the attacker previously had write access, that can be attached with docker exec. This occurs because of file-descriptor mishandling, related to `/proc/self/exe`. CVE-2019-5736
VCID-t39q-ds43-9kee Improper Restriction of Operations within the Bounds of a Memory Buffer When parsing a JSON payload with deeply nested JSON structures, the parser in Apache Mesos might overflow the stack due to unbounded recursion. CVE-2018-11793
GHSA-p2xq-vcm7-xjj6

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T20:53:01.048755+00:00 GitLab Importer Affected by VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.4.0
2026-04-16T20:52:39.051799+00:00 GitLab Importer Fixing VCID-t39q-ds43-9kee https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2018-11793.yml 38.4.0
2026-04-11T22:03:50.903835+00:00 GitLab Importer Affected by VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.3.0
2026-04-11T22:03:27.593662+00:00 GitLab Importer Fixing VCID-t39q-ds43-9kee https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2018-11793.yml 38.3.0
2026-04-02T22:16:50.776013+00:00 GitLab Importer Affected by VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.1.0
2026-04-02T22:16:29.048218+00:00 GitLab Importer Fixing VCID-t39q-ds43-9kee https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2018-11793.yml 38.1.0
2026-04-01T16:34:28.113658+00:00 GitLab Importer Affected by VCID-32mt-mbwm-bbca https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-0204.yml 38.0.0
2026-04-01T15:57:21.293471+00:00 GHSA Importer Fixing VCID-t39q-ds43-9kee https://github.com/advisories/GHSA-p2xq-vcm7-xjj6 38.0.0
2026-04-01T13:04:30.226679+00:00 GithubOSV Importer Fixing VCID-t39q-ds43-9kee https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2019/03/GHSA-p2xq-vcm7-xjj6/GHSA-p2xq-vcm7-xjj6.json 38.0.0
2026-04-01T12:48:20.360254+00:00 GitLab Importer Fixing VCID-t39q-ds43-9kee https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2018-11793.yml 38.0.0
2026-04-01T12:48:17.440006+00:00 GitLab Importer Fixing VCID-7juj-78y7-g7b6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.mesos/mesos/CVE-2019-5736.yml 38.0.0