3 matches found
CVE-2023-30549
CVE-2023-30549 (Apptainer ext4 use-after-free) Affects Apptainer < 1.1.0 with apptainer-suid
CVE-2023-38496
Apptainer CVE-2023-38496 affects version 1.2.0-rc.2, where an ineffective privilege drop during container network setup causes subsequent functions to run with root privileges. This expands the attack surface to host filesystems if an attacker crafts a starter config to delete directories. The se...
CVE-2025-65105
CVE-2025-65105 affects Apptainer prior to 1.4.5, where two forms of the --security option (--security=apparmor: and --security=selinux:) can be disabled, weakening confinement on containers. The issue is described as affecting how --security is applied, including environments where the feature is...