113 matches found
Arbitrary File Overwrite
github.com/containers/libpod is vulnerable to arbitrary file overwrite. The vulnerability exists as it does not properly perform symlink processing and wild-card characters parsing, allowing for overwriting of existing files when an undesired glob operation occurs...
CVE-2019-18466
Podman libpod before 1.6.0 is affected by CVE-2019-18466. A symlink in the host context is resolved during a container-to-host copy due to an undesired glob, enabling a container image containing specific symlinks to overwrite host files when copied by a victim. Impact is local, with potential fi...
PT-2019-5382 · Red Hat +4 · Podman +5
Name of the Vulnerable Software and Affected Versions: Podman versions prior to 1.6.0 Description: The issue is related to the handling of symbolic links in the libpod library of Podman. It allows an attacker to create a container image with specific symlinks that, when copied to the host...
Arbitrary File Write
github.com/containers/libpod is vulnerable to arbitrary file write. The vulnerability exists through a symlink attack where an administrator can copy a file from the container to the host system...
Moderate: Red Hat Security Advisory: podman security, bug fix, and enhancement update
An update for podman is now available for Red Hat Enterprise Linux 7 Extras. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
[SECURITY] Fedora 29 Update: podman-1.4.0-2.fc29
podman Pod Manager is a fully featured container engine that is a simple daemonless tool. podman provides a Docker-CLI comparable command line that eases the transition from other container engines and allows the managemen t of pods, containers and images. Simply put: alias docker=3Dpodman. Most...
Fedora Update for podman FEDORA-2019-886b4d2fb6
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
[SECURITY] Fedora 30 Update: podman-1.4.0-1.fc30
podman Pod Manager is a fully featured container engine that is a simple daemonless tool. podman provides a Docker-CLI comparable command line that eases the transition from other container engines and allows the managemen t of pods, containers and images. Simply put: alias docker=3Dpodman. Most...
Moderate: Red Hat Bug Fix Advisory: podman bug fix update
An updated podman package that fixes one bug is now available for Red Hat Enterprise Linux 7 Extras. The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. User...
[SECURITY] Fedora 28 Update: podman-0.7.2-2.git4ca4c5f.fc28
Manage Pods, Containers and Container Images libpod provides a library for applications looking to use the Container Pod concept popularized by Kubernetes...
podman elevation of privilege vulnerability
libpod is a library for running OCI-based containers in Pods. podman is one of the tools for managing Pods. A security vulnerability exists in podman 0.6.1 and earlier versions. An attacker can exploit the vulnerability to enable containers to gain elevated privileges...
[SECURITY] Fedora 27 Update: podman-0.6.4-1.gitd5beb2f.fc27
Manage Pods, Containers and Container Images libpod provides a library for applications looking to use the Container Pod concept popularized by Kubernetes...
[SECURITY] Fedora 28 Update: podman-0.6.4-1.gitd5beb2f.fc28
Manage Pods, Containers and Container Images libpod provides a library for applications looking to use the Container Pod concept popularized by Kubernetes...