A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to mount an arbitrary directory from the host (read/write) into the container as long as those files can be accessed by the user running Buildah.

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to mount an arbitrary directory from the host (read/write) into the container as long as those files can be accessed by the user running Buildah.

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to mount an arbitrary directory from the host (read/write) into the container as long as those files can be accessed by the user running Buildah.

A vulnerability was found in Buildah. Cache mounts do not properly val ...

Security update for buildah

Уязвимость buildah

Important: buildah security update

Buildah allows arbitrary directory mount

ELSA-2024-8563: buildah security update (IMPORTANT)

Уязвимость инструмента управления контейнерными образами Buildah, существующая из-за неверного ограничения имени пути к каталогу с ограниченным доступом, позволяющая нарушителю пользователю повысить привилегии в системе

Security update for podman

Important: podman security update

ELSA-2024-9051: podman security update (IMPORTANT)

ELSA-2024-8846: container-tools:ol8 security update (IMPORTANT)

Security update for buildah

Security update for buildah

Security update for podman

ELSA-2024-9459: buildah security update (IMPORTANT)

ELSA-2024-9454: podman security update (IMPORTANT)

Security update for podman