Description
A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.
Problem types
Product status
Any version before 1.33.12
1.35.0 (semver) before 1.35.5
1.37.0 (semver) before 1.37.6
1.38.0 (semver) before 1.38.1
8100020250124120243.afee755d (rpm) before *
8060020250203202123.3b538bd8 (rpm) before *
8060020250203202123.3b538bd8 (rpm) before *
8060020250203202123.3b538bd8 (rpm) before *
8080020250207173112.0f77c1b7 (rpm) before *
4:5.2.2-13.el9_5 (rpm) before *
2:1.37.6-1.el9_5 (rpm) before *
2:4.2.0-6.el9_0 (rpm) before *
1:1.26.9-1.el9_0 (rpm) before *
1:1.29.5-1.el9_2 (rpm) before *
2:4.4.1-22.el9_2 (rpm) before *
2:1.33.12-2.el9_4 (rpm) before *
4:4.9.4-17.el9_4 (rpm) before *
412.86.202503052321-0 (rpm) before *
3:4.2.0-13.rhaos4.12.el9 (rpm) before *
1:1.29.5-1.rhaos4.13.el9 (rpm) before *
3:4.4.1-16.rhaos4.13.el8 (rpm) before *
413.92.202503112237-0 (rpm) before *
3:4.4.1-22.rhaos4.14.el8 (rpm) before *
1:1.29.5-1.rhaos4.14.el8 (rpm) before *
414.92.202503100617-0 (rpm) before *
3:4.4.1-33.rhaos4.15.el8 (rpm) before *
1:1.29.5-1.rhaos4.15.el9 (rpm) before *
415.92.202503060749-0 (rpm) before *
4:4.9.4-15.rhaos4.16.el9 (rpm) before *
2:1.33.12-1.rhaos4.16.el8 (rpm) before *
416.94.202502180249-0 (rpm) before *
5:5.2.2-2.rhaos4.17.el8 (rpm) before *
2:1.33.12-1.rhaos4.17.el9 (rpm) before *
417.94.202504080421-0 (rpm) before *
2:1.33.12-1.rhaos4.18.el9 (rpm) before *
418.94.202504021150-0 (rpm) before *
Timeline
| 2024-11-14: | Reported to Red Hat. |
| 2025-01-20: | Made public. |
References
access.redhat.com/errata/RHSA-2025:0830 (RHSA-2025:0830)
access.redhat.com/errata/RHSA-2025:0878 (RHSA-2025:0878)
access.redhat.com/errata/RHSA-2025:0922 (RHSA-2025:0922)
access.redhat.com/errata/RHSA-2025:0923 (RHSA-2025:0923)
access.redhat.com/errata/RHSA-2025:1186 (RHSA-2025:1186)
access.redhat.com/errata/RHSA-2025:1187 (RHSA-2025:1187)
access.redhat.com/errata/RHSA-2025:1188 (RHSA-2025:1188)
access.redhat.com/errata/RHSA-2025:1189 (RHSA-2025:1189)
access.redhat.com/errata/RHSA-2025:1207 (RHSA-2025:1207)
access.redhat.com/errata/RHSA-2025:1275 (RHSA-2025:1275)
access.redhat.com/errata/RHSA-2025:1295 (RHSA-2025:1295)
access.redhat.com/errata/RHSA-2025:1296 (RHSA-2025:1296)
access.redhat.com/errata/RHSA-2025:1372 (RHSA-2025:1372)
access.redhat.com/errata/RHSA-2025:1453 (RHSA-2025:1453)
access.redhat.com/errata/RHSA-2025:1707 (RHSA-2025:1707)
access.redhat.com/errata/RHSA-2025:1713 (RHSA-2025:1713)
access.redhat.com/errata/RHSA-2025:1908 (RHSA-2025:1908)
access.redhat.com/errata/RHSA-2025:1910 (RHSA-2025:1910)
access.redhat.com/errata/RHSA-2025:1914 (RHSA-2025:1914)
access.redhat.com/errata/RHSA-2025:2441 (RHSA-2025:2441)
access.redhat.com/errata/RHSA-2025:2443 (RHSA-2025:2443)
access.redhat.com/errata/RHSA-2025:2454 (RHSA-2025:2454)
access.redhat.com/errata/RHSA-2025:2456 (RHSA-2025:2456)
access.redhat.com/errata/RHSA-2025:2701 (RHSA-2025:2701)
access.redhat.com/errata/RHSA-2025:2703 (RHSA-2025:2703)
access.redhat.com/errata/RHSA-2025:2710 (RHSA-2025:2710)
access.redhat.com/errata/RHSA-2025:2712 (RHSA-2025:2712)
access.redhat.com/errata/RHSA-2025:3577 (RHSA-2025:3577)
access.redhat.com/errata/RHSA-2025:3798 (RHSA-2025:3798)
access.redhat.com/security/cve/CVE-2024-11218
bugzilla.redhat.com/show_bug.cgi?id=2326231 (RHBZ#2326231)
github.com/containers/buildah/pull/5918