github.com/containers/libpod

Go4 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting github.com/containers/libpodpage 1 of 1

CVE-2019-18466MEDIUMCVSS 5.5EG 5.5✓ Fixed in 1.6.0
2019-10-28
An issue was discovered in Podman in libpod before 1.6.0. It resolves a symlink in the host context during a copy operation from the container to the host, because an undesired glob operation occurs. An attacker could create a container im…
CVE-2020-14370MEDIUMCVSS 5.3EG 5.3
2020-09-23
An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink API or the Docker-compatible REST API, if multiple containers are created in a short duration, the environme…
CVE-2020-1726MEDIUMCVSS 5.9EG 5.9
2020-02-11
A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they are mounted as read-only. When a user runs a malicious container or a container based on a malicious i…
CVE-2021-20188HIGHCVSS 7.0EG 7.0✓ Fixed in 1.7.0
2021-02-11
A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the…

Check whether github.com/containers/libpod is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/containers/libpod CVEs against the assets you own.

Start Free Scan →