rpm package
opensuse/cni-plugins&distro=openSUSE Leap Micro 5.3
pkg:rpm/opensuse/cni-plugins&distro=openSUSE%20Leap%20Micro%205.3
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-1753 | Hig | 8.6 | < 0.8.6-150100.3.22.3 | 0.8.6-150100.3.22.3 | Mar 18, 2024 | A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause t | |
| CVE-2021-20206 | — | < 0.8.6-150100.3.11.1 | 0.8.6-150100.3.11.1 | Mar 26, 2021 | An improper limitation of path name flaw was found in containernetworking/cni in versions before 0.8.1. When specifying the plugin to load in the 'type' field in the network configuration, it is possible to use special elements such as "../" separators to reference binaries elsew |
- affected < 0.8.6-150100.3.22.3fixed 0.8.6-150100.3.22.3
A flaw was found in Buildah (and subsequently Podman Build) which allows containers to mount arbitrary locations on the host filesystem into build containers. A malicious Containerfile can use a dummy image with a symbolic link to the root filesystem as a mount source and cause t
- CVE-2021-20206Mar 26, 2021affected < 0.8.6-150100.3.11.1fixed 0.8.6-150100.3.11.1
An improper limitation of path name flaw was found in containernetworking/cni in versions before 0.8.1. When specifying the plugin to load in the 'type' field in the network configuration, it is possible to use special elements such as "../" separators to reference binaries elsew