Lucene search
Redhat.comRH:CVE-2019-18466HistoryNov 04, 2019 - 3:30 p.m.
CVE-2019-18466
2019-11-0415:30:52
redhat.com
access.redhat.com
13
0.001 Low
EPSS
Percentile
48.3%
It was discovered that podman resolves a symlink in the host context during a copy operation from the container to the host. An attacker could create a container image containing particular symlinks that, when copied by a victim user to the host filesystem, may overwrite existing files with others from the host.
Related
nessus
nessus
SUSE SLES15 Security Update : cni, cni-plugins, conmon, fuse-overlayfs, podman (SUSE-SU-2020:0697-1)
2020-03-18 00:00:00
RHEL 7 : podman (RHSA-2020:1227)
2020-04-01 00:00:00
osv
osv
CVE-2019-18466
2019-10-28 13:15:11
Podman Symlink Vulnerability
2022-05-24 16:59:58
Important: container-tools:rhel8 security and bug fix update
2019-12-17 09:19:28
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:0697-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for cni, (openSUSE-SU-2020:0398-1)
2020-03-29 00:00:00
cve
cve
CVE-2019-18466
2019-10-28 13:15:11
github
github
Podman Symlink Vulnerability
2022-05-24 16:59:58
suse
suse
veracode
veracode
Arbitrary File Overwrite
2019-10-29 09:34:54
cvelist
cvelist
CVE-2019-18466
2019-10-28 12:37:00
prion
prion
Code injection
2019-10-28 13:15:00
debiancve
debiancve
CVE-2019-18466
2019-10-28 13:15:11
nvd
nvd
CVE-2019-18466
2019-10-28 13:15:11
redhat
redhat
(RHSA-2020:1227) Moderate: podman security, bug fix, and enhancement update
2020-03-31 23:31:01
rocky
rocky
container-tools:rhel8 security and bug fix update
2019-12-17 09:19:28
oraclelinux
oraclelinux
container-tools:ol8 security, bug fix, and enhancement update
2020-02-17 00:00:00