Lucene search
GoogleOSV:GHSA-FX8W-MJVM-HVPCHistoryMay 18, 2021 - 6:32 p.m.
Path Traversal in Buildah
2021-05-1818:32:41
Google
osv.dev
36
A path traversal flaw was found in Buildah in versions before 1.14.5. This flaw allows an attacker to trick a user into building a malicious container image hosted on an HTTP(s) server and then write files to the user’s system anywhere that the user has permissions.
Specific Go Packages Affected
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/containers/buildah | lt | 1.14.4 |
Related
debiancve
debiancve
CVE-2020-10696
2020-03-31 22:15:14
osv
osv
Important: container-tools:1.0 security and bug fix update
2020-04-28 16:06:48
Important: container-tools:rhel8 security update
2020-04-28 16:07:32
Important: container-tools:rhel8 security update
2020-04-28 16:07:32
alpinelinux
alpinelinux
CVE-2020-10696
2020-03-31 22:15:14
nessus
nessus
Oracle Linux 8 : container-tools:1.0 (ELSA-2020-1926)
2020-08-13 00:00:00
Oracle Linux 8 : container-tools:2.0 (ELSA-2020-1931)
2020-08-13 00:00:00
Rocky Linux 8 : container-tools:1.0 (RLSA-2020:1926)
2023-11-06 00:00:00
github
github
Path Traversal in Buildah
2021-05-18 18:32:41
almalinux
almalinux
Important: container-tools:2.0 security update
2020-04-28 16:07:22
Important: container-tools:rhel8 security update
2020-04-28 16:07:32
Important: container-tools:1.0 security and bug fix update
2020-04-28 16:06:48
nvd
nvd
CVE-2020-10696
2020-03-31 22:15:14
cve
cve
CVE-2020-10696
2020-03-31 22:15:14
prion
prion
Path traversal
2020-03-31 22:15:00
redhatcve
redhatcve
CVE-2020-10696
2020-04-14 19:28:33
ubuntucve
ubuntucve
CVE-2020-10696
2020-03-31 00:00:00
redhat
redhat
(RHSA-2020:1449) Low: OpenShift Container Platform 4.1.41 security update
2020-04-22 15:31:37
(RHSA-2020:1931) Important: container-tools:2.0 security update
2020-04-28 16:07:22
oraclelinux
oraclelinux
container-tools:2.0 security update
2020-05-12 00:00:00
container-tools:ol8 security update
2020-05-12 00:00:00
container-tools:2.0 security update
2021-03-05 00:00:00
cvelist
cvelist
CVE-2020-10696
2020-03-31 21:01:22
rocky
rocky
container-tools:1.0 security and bug fix update
2020-04-28 16:06:48
container-tools:2.0 security update
2020-04-28 16:07:22
container-tools:rhel8 security update
2020-04-28 16:07:32
veracode
veracode
Directory Traversal
2020-04-02 06:05:06
suse
suse
Security update for buildah (moderate)
2020-11-29 00:00:00
Security update for buildah, libcontainers-common, podman (moderate)
2021-02-19 00:00:00
Security update for buildah (important)
2022-10-19 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:4349-1)
2022-12-08 00:00:00
openSUSE: Security Advisory for buildah, (openSUSE-SU-2021:0310-1)
2021-04-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:3423-1)
2021-06-09 00:00:00