Lucene search
K

26 matches found

OSV
OSV
added 2024/03/18 3:15 p.m.8 views

AZL-36899 CVE-2024-1753 affecting package libcontainers-common for versions less than 20240213-2

A flaw was found in Buildah and subsequently Podman Build which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation ...

8.6CVSS6.9AI score0.0049EPSS
Exploits0References1
OSV
OSV
added 2024/03/18 3:15 p.m.2 views

DEBIAN-CVE-2024-1753

A flaw was found in Buildah and subsequently Podman Build which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause the mount operation ...

8.6CVSS6.9AI score0.0049EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2018/10/23 3:27 p.m.219 views

Security update for fuse (moderate)

This update for fuse fixes the following security issue: - CVE-2018-10906: fusermount was vulnerable to a restriction bypass when SELinux is active. This allowed non-root users to mount a FUSE file system with the 'allowother' mount option regardless of whether 'userallowother' is set in the fuse...

4.6CVSS3AI score0.01414EPSS
Exploits3References1
OPENSUSE Linux
OPENSUSE Linux
added 2018/10/23 3:27 p.m.132 views

Security update for fuse (moderate)

This update for fuse fixes the following issues: - CVE-2018-10906: fusermount was vulnerable to a restriction bypass when SELinux is active. This allowed non-root users to mount a FUSE file system with the 'allowother' mount option regardless of whether 'userallowother' is set in the fuse...

4.6CVSS3.1AI score0.01414EPSS
Exploits3References1
OSV
OSV
added 2018/07/24 8:29 p.m.2 views

DEBIAN-CVE-2018-10906

In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is vulnerable to a restriction bypass when SELinux is active. This allows non-root users to mount a FUSE file system with the 'allowother' mount option regardless of whether 'userallowother' is set in the fuse configuration. An attack...

7.8CVSS7.9AI score0.01414EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2018/07/24 1:22 p.m.38 views

CVE-2018-10906

A vulnerability was discovered in fuse. When SELinux is active, fusermount is vulnerable to a restriction bypass. This allows non-root users to mount a FUSE file system with the 'allowother' mount option regardless of whether 'userallowother' is set in the fuse configuration. An attacker may use...

7.8CVSS3.7AI score0.01414EPSS
Exploits3References2
Rows per page
Query Builder