Количество 8
Количество 8
CVE-2019-18466
An issue was discovered in Podman in libpod before 1.6.0. It resolves a symlink in the host context during a copy operation from the container to the host, because an undesired glob operation occurs. An attacker could create a container image containing particular symlinks that, when copied by a victim user to the host filesystem, may overwrite existing files with others from the host.
CVE-2019-18466
An issue was discovered in Podman in libpod before 1.6.0. It resolves a symlink in the host context during a copy operation from the container to the host, because an undesired glob operation occurs. An attacker could create a container image containing particular symlinks that, when copied by a victim user to the host filesystem, may overwrite existing files with others from the host.
CVE-2019-18466
An issue was discovered in Podman in libpod before 1.6.0. It resolves ...
openSUSE-SU-2020:0398-1
Security update for cni, cni-plugins, conmon, fuse-overlayfs, podman
SUSE-SU-2020:0697-1
Security update for cni, cni-plugins, conmon, fuse-overlayfs, podman
GHSA-r34v-gqmw-qvgj
Podman Symlink Vulnerability
BDU:2020-02713
Уязвимость программного средства управления и запуска OCI-контейнеров Podman библиотеки libpod, позволяющая нарушителю перезаписывать существующие файлы
RLSA-2019:4269
Important: container-tools:rhel8 security and bug fix update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-18466 An issue was discovered in Podman in libpod before 1.6.0. It resolves a symlink in the host context during a copy operation from the container to the host, because an undesired glob operation occurs. An attacker could create a container image containing particular symlinks that, when copied by a victim user to the host filesystem, may overwrite existing files with others from the host. | CVSS3: 2.5 | 1% Низкий | почти 6 лет назад |
 | CVE-2019-18466 An issue was discovered in Podman in libpod before 1.6.0. It resolves a symlink in the host context during a copy operation from the container to the host, because an undesired glob operation occurs. An attacker could create a container image containing particular symlinks that, when copied by a victim user to the host filesystem, may overwrite existing files with others from the host. | CVSS3: 5.5 | 1% Низкий | больше 5 лет назад |
| CVE-2019-18466 An issue was discovered in Podman in libpod before 1.6.0. It resolves ... | CVSS3: 5.5 | 1% Низкий | больше 5 лет назад |
 | openSUSE-SU-2020:0398-1 Security update for cni, cni-plugins, conmon, fuse-overlayfs, podman | 1% Низкий | около 5 лет назад | |
| SUSE-SU-2020:0697-1 Security update for cni, cni-plugins, conmon, fuse-overlayfs, podman | 1% Низкий | больше 5 лет назад | |
| GHSA-r34v-gqmw-qvgj Podman Symlink Vulnerability | CVSS3: 5.5 | 1% Низкий | около 3 лет назад |
 | BDU:2020-02713 Уязвимость программного средства управления и запуска OCI-контейнеров Podman библиотеки libpod, позволяющая нарушителю перезаписывать существующие файлы | CVSS3: 5.5 | 1% Низкий | больше 5 лет назад |
 | RLSA-2019:4269 Important: container-tools:rhel8 security and bug fix update | больше 5 лет назад |
Уязвимостей на страницу