Affected by GO-2022-0390 and 14 other vulnerabilities

GO-2022-0390: Moby (Docker Engine) started with non-empty inheritable Linux process capabilities in github.com/docker/docker

GO-2022-0625: Access Restriction Bypass in Docker in github.com/docker/docker

GO-2022-0630: Arbitrary Code Execution in Docker in github.com/docker/docker

GO-2022-0636: Man-in-the-Middle (MitM) in github.com/docker/docker

GO-2022-0640: Arbitrary Code Execution in github.com/docker/docker

GO-2022-0649: Symlink Attack in Libcontainer and Docker Engine in github.com/docker/docker

GO-2022-0705: Directory Traversal in Docker in github.com/docker/docker

GO-2022-0708: Arbitrary File Override in Docker Engine in github.com/docker/docker

GO-2022-0751: Path Traversal in Docker in github.com/docker/docker

GO-2022-0985: Docker supplementary group permissions not set up properly, allowing attackers to bypass primary group restrictions in github.com/docker/docker

GO-2022-1107: Container build can leak any path on the host into the container in github.com/docker/docker

GO-2024-2914: Moby (Docker Engine) is vulnerable to Ambiguous OCI manifest parsing in github.com/docker/docker

GO-2025-3829: Moby firewalld reload removes bridge network isolation in github.com/docker/docker

GO-2026-4883: Moby has an Off-by-one error in its plugin privilege validation in github.com/docker/docker

GO-2026-4887: Moby has AuthZ plugin bypass when provided oversized request bodies in github.com/docker/docker

ipallocator

package

v1.3.0 Latest Latest Go to latest Published: Oct 15, 2014 License: Apache-2.0 Imports: 5 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/docker/docker

Links

Documentation ¶

Index ¶

Variables
func RegisterSubnet(network *net.IPNet, subnet *net.IPNet) error
func ReleaseIP(network *net.IPNet, ip net.IP) error
func RequestIP(network *net.IPNet, ip net.IP) (net.IP, error)

Constants ¶

This section is empty.

Variables ¶

View Source

var (
	ErrNoAvailableIPs           = errors.New("no available ip addresses on network")
	ErrIPAlreadyAllocated       = errors.New("ip already allocated")
	ErrIPOutOfRange             = errors.New("requested ip is out of range")
	ErrNetworkAlreadyRegistered = errors.New("network already registered")
	ErrBadSubnet                = errors.New("network does not contain specified subnet")
)

Functions ¶

func RegisterSubnet ¶ added in v1.3.0

func RegisterSubnet(network *net.IPNet, subnet *net.IPNet) error

RegisterSubnet registers network in global allocator with bounds defined by subnet. If you want to use network range you must call this method before first RequestIP, otherwise full network range will be used

func ReleaseIP ¶

func ReleaseIP(network *net.IPNet, ip net.IP) error

ReleaseIP adds the provided ip back into the pool of available ips to be returned for use.

func RequestIP ¶

func RequestIP(network *net.IPNet, ip net.IP) (net.IP, error)

RequestIP requests an available ip from the given network. It will return the next available ip if the ip provided is nil. If the ip provided is not nil it will validate that the provided ip is available for use or return an error

Types ¶

This section is empty.

Source Files ¶

View all Source files

allocator.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL