Ssjcorpsec

**Name of the Vulnerable Software and Affected Versions** BentoML versions prior to 1.4.39 **Description** BentoML is a Python library used for building online serving systems optimized for AI applications and model inference. The issue occurs because the template `src/bentoml/ internal/container/frontend/dockerfile/templates/base v2.j2` interpolates the `docker.base image` variable without escaping, newline filtering, or validation. A malicious `bento.yaml` file containing a multi-line value for `docker.base image` can smuggle arbitrary Dockerfile directives into the generated Dockerfile. When the `bentoml containerize` command is executed, it triggers a docker build that runs the injected `RUN` directives on the host system. **Recommendations** Update to version 1.4.39.

**Name of the Vulnerable Software and Affected Versions** BentoML versions prior to 1.4.39 **Description** BentoML is a Python library used for building online serving systems optimized for AI applications and model inference. A flaw exists where a malicious `bentofile.yaml` file containing a newline-injected value in the `envs[*].name` variable can produce unquoted RUN directives in the generated Dockerfile. When the `bentoml containerize` command is executed on the imported bento, these RUN directives are executed on the host system during the docker build process. **Recommendations** Update to version 1.4.39.