On Tue, 2 May 2023 at 16:25, Tianon Gravi <tia...@debian.org> wrote: > > I have talked to Tianon on 2023-02-28, and we concluded that it's not > > a security issue, just working as expected. > > > > Tianon said he will ask someone inside the Docker company. Not sure if > > they have successfully invalidated this CVE. > > My colleague disputed it, but we apparently never heard back about the > dispute. 🤷
As of yesterday, it's officially "rejected": https://www.cve.org/CVERecord?id=CVE-2022-37708 🎉 ♥, - Tianon 4096R / B42F 6819 007F 00F8 8E36 4FD4 036A 9C25 BF35 7DD4