CVE-2022-4123

Опубликовано: 08 дек. 2022

Источник: debian

Описание

A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
golang-github-containers-buildah	unfixed			package

Примечания

https://bugzilla.redhat.com/show_bug.cgi?id=2144989
Negligible security impact

Связанные уязвимости

CVE-2022-4123

CVSS3: 3.3

ubuntu

около 3 лет назад

A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.

CVE-2022-4123

CVSS3: 3.1

redhat

около 3 лет назад

A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.

CVE-2022-4123

CVSS3: 3.3

nvd

около 3 лет назад

A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.

CVE-2022-4123

CVSS3: 3.3

msrc

4 месяца назад

A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.

GHSA-rprg-4v7q-87v7

CVSS3: 3.3

github

около 3 лет назад

Buildah (as part of Podman) vulnerable to Path Traversal