Описание
Buildah (as part of Podman) vulnerable to Path Traversal
A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2022-4123
- https://github.com/containers/podman/issues/13293
- https://github.com/containers/podman/pull/13531
- https://github.com/containers/podman/commit/7934b77dd5372c22063686a218b8b48c2fcaca8c
- https://bugzilla.redhat.com/show_bug.cgi?id=2144989
- https://pkg.go.dev/vuln/GO-2022-1159
Пакеты
github.com/containers/podman/v4
>= 4.1.0-rc1, <= 4.4.1
Отсутствует
Связанные уязвимости
A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.
A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.
A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.
A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.
A flaw was found in Buildah. The local path and the lowest subdirector ...