fromTheregister1 month agoInformation securityDocker Compose vulnerability opens door to host-level writesDocker Compose's OCI artifact handling had a path traversal vulnerability (CVE-2025-62725) allowing arbitrary host file writes; upgrade to Compose v2.40.
fromTechzine Global1 month agoInformation securityDocker fixes serious vulnerabilities in Compose and Desktop InstallerDocker fixed two high-risk vulnerabilities: a Docker Compose path-annotation flaw allowing host file writes and a Docker Desktop Windows installer DLL hijack.
fromTheregister1 month agoInformation securityDocker Compose vulnerability opens door to host-level writes
fromTechzine Global1 month agoInformation securityDocker fixes serious vulnerabilities in Compose and Desktop Installer
