Lucene search
Veracode Vulnerability DatabaseVERACODE:20979HistoryAug 05, 2019 - 12:16 a.m.
Arbitrary File Read
2019-08-0500:16:16
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
17
EPSS
0.001
Percentile
23.6%
podman is vulnerable to arbitrary file read. The vulnerability exists through an improper symlink resolution allows access to host files when executing podman cp on running containers.
References
lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html
access.redhat.com/errata/RHSA-2019:1907
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1717919
bugzilla.redhat.com/show_bug.cgi?id=1727873
bugzilla.redhat.com/show_bug.cgi?id=1728242
bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10152
github.com/containers/libpod/blob/master/RELEASE_NOTES.md#140
github.com/containers/libpod/issues/3211
github.com/containers/libpod/pull/3214
Related
nessus
nessus
Fedora 29 : 2:podman (2019-b66d704846)
2019-06-17 00:00:00
Fedora 30 : 2:podman (2019-886b4d2fb6)
2019-06-13 00:00:00
RHEL 7 : podman (RHSA-2019:1907)
2019-08-12 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: podman-1.4.0-1.fc30
2019-06-12 00:46:59
[SECURITY] Fedora 29 Update: podman-1.4.0-2.fc29
2019-06-15 01:22:14
[SECURITY] Fedora 30 Update: podman-1.4.0-2.fc30
2019-06-12 14:48:54
osv
osv
Podman Path Traversal Vulnerability leads to arbitrary file read/write in github.com/containers/podman
2024-08-20 20:31:38
Podman Path Traversal Vulnerability leads to arbitrary file read/write
2022-05-24 16:51:48
CVE-2019-10152
2019-07-30 23:15:11
veracode
veracode
Arbitrary File Write
2019-08-07 05:17:11
prion
prion
Path traversal
2019-07-30 23:15:00
redhat
redhat
(RHSA-2019:1907) Moderate: podman security, bug fix, and enhancement update
2019-07-29 15:59:26
github
github
Podman Path Traversal Vulnerability leads to arbitrary file read/write
2022-05-24 16:51:48
cvelist
cvelist
CVE-2019-10152
2019-07-30 22:07:23
cve
cve
CVE-2019-10152
2019-07-30 23:15:11
nvd
nvd
CVE-2019-10152
2019-07-30 23:15:11
redhatcve
redhatcve
CVE-2019-10152
2019-10-09 06:39:02
openvas
openvas
Fedora Update for podman FEDORA-2019-886b4d2fb6
2019-06-13 00:00:00
Fedora Update for podman FEDORA-2019-b66d704846
2019-06-15 00:00:00
Fedora Update for podman FEDORA-2019-0937bbf558
2019-06-12 00:00:00
debiancve
debiancve
CVE-2019-10152
2019-07-30 23:15:11
ubuntucve
ubuntucve
CVE-2019-25067
2022-06-09 00:00:00
suse
suse
Security update for podman, slirp4netns and libcontainers-common (moderate)
2019-09-02 00:00:00