Moderate severityNVD Advisory· Published Sep 26, 2024· Updated Sep 26, 2024
CVE-2024-0133
CVE-2024-0133
Description
NVIDIA Container Toolkit 1.16.1 or earlier contains a vulnerability in the default mode of operation allowing a specially crafted container image to create empty files on the host file system. This does not impact use cases where CDI is used. A successful exploit of this vulnerability may lead to data tampering.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/NVIDIA/nvidia-container-toolkitGo | < 1.16.2 | 1.16.2 |
Affected products
66- osv-coords64 versionspkg:apk/chainguard/gpu-operatorpkg:apk/chainguard/nvidia-container-toolkitpkg:apk/chainguard/nvidia-container-toolkit-containerdpkg:apk/chainguard/nvidia-container-toolkit-criopkg:apk/chainguard/nvidia-container-toolkit-dockerpkg:apk/chainguard/nvidia-container-toolkit-nvidia-cdi-hookpkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtimepkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtime-cdipkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtime-hookpkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtime-legacypkg:apk/chainguard/nvidia-container-toolkit-nvidia-ctkpkg:apk/chainguard/nvidia-container-toolkit-nvidia-ctk-installerpkg:apk/chainguard/nvidia-container-toolkit-nvidia-toolkitpkg:apk/chainguard/nvidia-container-toolkit-operatorpkg:apk/chainguard/nvidia-container-toolkit-toolkitpkg:apk/chainguard/nvidia-gpu-operator-validator-24.3pkg:apk/wolfi/nvidia-container-toolkitpkg:apk/wolfi/nvidia-container-toolkit-containerdpkg:apk/wolfi/nvidia-container-toolkit-criopkg:apk/wolfi/nvidia-container-toolkit-dockerpkg:apk/wolfi/nvidia-container-toolkit-nvidia-cdi-hookpkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtimepkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtime-cdipkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtime-hookpkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtime-legacypkg:apk/wolfi/nvidia-container-toolkit-nvidia-ctkpkg:apk/wolfi/nvidia-container-toolkit-nvidia-ctk-installerpkg:apk/wolfi/nvidia-container-toolkit-nvidia-toolkitpkg:apk/wolfi/nvidia-container-toolkit-operatorpkg:apk/wolfi/nvidia-container-toolkit-toolkitpkg:golang/github.com/nvidia/nvidia-container-toolkitpkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/libnvidia-container&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/nvidia-container-toolkit&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/govulncheck-vulndb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5pkg:rpm/suse/govulncheck-vulndb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6pkg:rpm/suse/govulncheck-vulndb&distro=SUSE%20Package%20Hub%2012pkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP7pkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/libnvidia-container&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP6pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP7pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5
< 24.6.2-r0+ 63 more
- (no CPE)range: < 24.6.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 24.3.0-r4
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2-r0
- (no CPE)range: < 1.16.2
- (no CPE)range: < 0.0.20241104T154416-150000.1.12.1
- (no CPE)range: < 0.0.20241104T154416-150000.1.12.1
- (no CPE)range: < 0.0.20241104T154416-1.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 0.0.20241104T154416-150000.1.12.1
- (no CPE)range: < 0.0.20241104T154416-150000.1.12.1
- (no CPE)range: < 0.0.20241104T154416-5.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.9.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- Range: All versions up to and including v1.16.1
- Range: All versions up to and including 24.6.1
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-f748-7hpg-88chghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-0133ghsaADVISORY
- advisory-inbox.githubapp.com/advisory_reviews/GHSA-wqq7-v22c-gpfpghsaWEB
- github.com/NVIDIA/libnvidia-container/security/advisories/GHSA-xff4-h7r9-vrpfghsaWEB
- github.com/NVIDIA/nvidia-container-toolkit/security/advisories/GHSA-f748-7hpg-88chghsaWEB
- nvidia.custhelp.com/app/answers/detail/a_id/5582ghsaWEB
News mentions
0No linked articles in our index yet.