{"id":"AZL-53810","summary":"CVE-2024-36621 affecting package moby-engine for versions less than 25.0.3-9","details":"moby v25.0.5 is affected by a Race Condition in builder/builder-next/adapters/snapshot/layer.go. The vulnerability could be used to trigger concurrent builds that call the EnsureLayer function resulting in resource leaks/exhaustion.","modified":"2026-04-01T05:18:08.440335Z","published":"2024-11-29T18:15:07Z","upstream":["CVE-2024-36621"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-36621"}],"affected":[{"package":{"name":"moby-engine","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/moby-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"25.0.3-9"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-53810.json"}}],"schema_version":"1.7.5"}