PT-2021-7850 · Podman+7 · Podman+7

Nick Tait

·

Published

2021-07-15

·

Updated

2025-08-28

·

CVE-2022-1227

CVSS v2.0

10

High

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Podman (affected versions not specified)
Description A privilege escalation flaw in Podman allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability is triggered after a user runs the 'podman top' command, giving the attacker access to the host filesystem and potentially leading to information disclosure or denial of service. The issue is related to incorrect privilege management when running 'podman top' in a container created from a malicious image.
Recommendations As a temporary workaround, consider disabling the podman top command until a patch is available. Restrict access to the nsenter binary to minimize the risk of exploitation. Avoid using untrusted sources for the nsenter binary. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Improper Privilege Management

Improper Preservation of Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-269CWE-281

Related Identifiers

ALSA-2022:1762
ALSA-2022:2143
ALT-PU-2022-1658
ALT-PU-2023-1488
ALT-PU-2025-10794
AZL-9656
BDU:2023-03685
CESA-2022_1762
CESA-2022_2143
CVE-2022-1227
GHSA-66VW-V2X9-HW75
GO-2022-0558
MGASA-2023-0213
OPENSUSE-SU-2022_2834-1
OPENSUSE-SU-2022_2839-1
OPENSUSE-SU-2024:12400-1
RHSA-2022:1762
RHSA-2022:2143
RHSA-2022:2190
RHSA-2022:2263
RHSA-2022:4651
RHSA-2022:4816
RHSA-2022:5622
RHSA-2022_1762
RHSA-2022_2143
RLSA-2022:1762
RLSA-2022:2143
SUSE-SU-2022:2834-1
SUSE-SU-2022:2839-1
SUSE-SU-2022:2839-2
SUSE-SU-2022_2834-1
SUSE-SU-2022_2839-1

Affected Products

Alt Linux
Almalinux
Centos
Podman
Red Hat
Red Os
Rocky Linux
Suse