High severity7.4GHSA Advisory· Published Sep 16, 2025· Updated Apr 15, 2026
CVE-2025-4953
CVE-2025-4953
Description
A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/containers/podman/v5Go | <= 5.5.0 | — |
Affected products
1- Range: <= 5.5.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
18- github.com/advisories/GHSA-m68q-4hqr-mc6fghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-4953ghsaADVISORY
- access.redhat.com/errata/RHSA-2024:8690nvdWEB
- access.redhat.com/errata/RHSA-2025:15904nvdWEB
- access.redhat.com/errata/RHSA-2025:16724nvdWEB
- access.redhat.com/errata/RHSA-2025:16729nvdWEB
- access.redhat.com/errata/RHSA-2025:17669nvdWEB
- access.redhat.com/errata/RHSA-2025:22265nvdWEB
- access.redhat.com/errata/RHSA-2025:22275nvdWEB
- access.redhat.com/errata/RHSA-2025:22695nvdWEB
- access.redhat.com/errata/RHSA-2025:22724nvdWEB
- access.redhat.com/errata/RHSA-2025:22732nvdWEB
- access.redhat.com/errata/RHSA-2025:23113nvdWEB
- access.redhat.com/errata/RHSA-2025:2703nvdWEB
- access.redhat.com/errata/RHSA-2026:0316nvdWEB
- access.redhat.com/security/cve/CVE-2025-4953nvdWEB
- bugzilla.redhat.com/show_bug.cginvdWEB
- github.com/containers/podman/pull/25173nvdWEB
News mentions
0No linked articles in our index yet.