Andrew Morgan

**Name of the Vulnerable Software and Affected Versions** Buildah (affected versions not specified) Moby (Docker Engine) (affected versions not specified) **Description** A flaw was found in buildah and Moby (Docker Engine) where containers were incorrectly started with non-empty default permissions and non-empty inheritable Linux process capabilities. This enables an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when `execve(2)` runs, potentially impacting confidentiality and integrity. The bug does not affect the container security sandbox, as the inheritable set never contains more capabilities than are included in the container's bounding set. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Podman (affected versions not specified) **Description** The issue is related to errors in using standard permissions, allowing an attacker to bypass security restrictions and elevate privileges. This is due to containers being started with non-empty default permissions and non-empty inheritable Linux process capabilities. The flaw enables programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moby (Docker Engine) (affected versions not specified) crun (affected versions not specified) **Description** A flaw was found in crun and Moby (Docker Engine) where containers were started incorrectly with non-empty inheritable Linux process capabilities. This issue allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when `execve(2)` runs. **Recommendations** For Moby (Docker Engine), at the moment, there is no information about a newer version that contains a fix for this vulnerability. For crun, at the moment, there is no information about a newer version that contains a fix for this vulnerability.