PT-2025-1315 · Podman+9 · Podman+9
Published
2025-01-20
·
Updated
2025-09-19
·
CVE-2024-11218
CVSS v3.1
8.6
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
podman versions prior to 5.3.2
buildah versions prior to 1.38.1
Description
A vulnerability was found in
podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.Recommendations
podman versions prior to 5.3.2: Update to podman version 5.3.2 or later to resolve the issue.
buildah versions prior to 1.38.1: Update to buildah version 1.38.1 or later to resolve the issue.
Fix
DoS
Improper Privilege Management
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Almalinux
Astra Linux
Centos
Debian
Red Hat
Red Os
Rocky Linux
Suse
Buildah
Podman