Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2024/11/13 6:55 p.m.4 views

buildah: Buildah allows arbitrary directory mount

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a RUN instruction in a Container file to mount an arbitrary directory from the host read/write into the container as long as those files can...

7.8CVSS7.3AI score0.00392EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/11/06 2:57 p.m.3 views

buildah: Buildah allows arbitrary directory mount

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a RUN instruction in a Container file to mount an arbitrary directory from the host read/write into the container as long as those files can...

7.8CVSS7.3AI score0.00392EPSS
Exploits0References4
OSV
OSV
added 2024/10/09 3:15 p.m.5 views

UBUNTU-CVE-2024-9675

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a RUN instruction in a Container file to mount an arbitrary directory from the host read/write into the container as long as those files can...

7.8CVSS7.2AI score0.00392EPSS
Exploits0References5
OSV
OSV
added 2024/10/01 9:15 p.m.7 views

AZL-50268 CVE-2024-9407 affecting package podman 4.1.1-26

A vulnerability exists in the bind-propagation option of the Dockerfile RUN --mount instruction. The system does not properly validate the input passed to this option, allowing users to pass arbitrary parameters to the mount instruction. This issue can be exploited to mount sensitive directories...

4.7CVSS7.2AI score0.00287EPSS
Exploits0References1
Rows per page
Query Builder