rpm package
opensuse/libcontainers-common&distro=openSUSE Leap 15.1
pkg:rpm/opensuse/libcontainers-common&distro=openSUSE%20Leap%2015.1
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-1726 | — | < 20200727-lp151.2.10.1 | 20200727-lp151.2.10.1 | Feb 11, 2020 | A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they are mounted as read-only. When a user runs a malicious container or a container based on a malicious image with an attached volume that is used | ||
| CVE-2019-10152 | — | < 20190401-lp151.2.3.1 | 20190401-lp151.2.3.1 | Jul 30, 2019 | A path traversal vulnerability has been discovered in podman before version 1.4.0 in the way it handles symlinks inside containers. An attacker who has compromised an existing container can cause arbitrary files on the host filesystem to be read/written when an administrator trie | ||
| CVE-2018-15664 | — | < 20190401-lp151.2.3.1 | 20190401-lp151.2.3.1 | May 23, 2019 | In Docker through 18.06.1-ce-rc2, the API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do | ||
| CVE-2019-6778 | — | < 20190401-lp151.2.3.1 | 20190401-lp151.2.3.1 | Mar 17, 2019 | In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow. |
- CVE-2020-1726Feb 11, 2020affected < 20200727-lp151.2.10.1fixed 20200727-lp151.2.10.1
A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they are mounted as read-only. When a user runs a malicious container or a container based on a malicious image with an attached volume that is used
- CVE-2019-10152Jul 30, 2019affected < 20190401-lp151.2.3.1fixed 20190401-lp151.2.3.1
A path traversal vulnerability has been discovered in podman before version 1.4.0 in the way it handles symlinks inside containers. An attacker who has compromised an existing container can cause arbitrary files on the host filesystem to be read/written when an administrator trie
- CVE-2018-15664May 23, 2019affected < 20190401-lp151.2.3.1fixed 20190401-lp151.2.3.1
In Docker through 18.06.1-ce-rc2, the API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access to the host filesystem with root privileges, because daemon/archive.go does not do
- CVE-2019-6778Mar 17, 2019affected < 20190401-lp151.2.3.1fixed 20190401-lp151.2.3.1
In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.