4 matches found
Astra Linux – Vulnerability in libpod, golang-github-containers-buildah
A vulnerability was discovered in podman build and buildah. This issue occurs when using the --jobs=2 option in a container breakout scenario, especially during the build process of a malicious Containerfile. SELinux may mitigate this issue, but even with SELinux enabled, it still allows for the...
podman: buildah: Container breakout by using --jobs=2 and a race condition when building a malicious Containerfile
A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...
Security update for podman
This update for podman fixes the following issues: CVE-2024-11218: Fixed a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. bsc1236270 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
AZL-55942 CVE-2024-11218 affecting package podman 4.1.1-26
A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the hos...