927568 – (CVE-2024-1753) [Tracker] Podman Buildkit container escape

Bug 927568 (CVE-2024-1753) - [Tracker] Podman Buildkit container escape

Summary: [Tracker] Podman Buildkit container escape

Status:	CONFIRMED

Alias:	CVE-2024-1753

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:	https://github.com/containers/buildah...
Whiteboard:
Keywords:

Depends on:
Blocks:	927501 927502
	Show dependency tree

Reported:	2024-03-23 07:55 UTC by Hans de Graaff
Modified:	2024-03-23 07:59 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Hans de Graaff gentoo-dev

2024-03-23 07:55:39 UTC

Users running containers with root privileges allowing a container to run with read/write access to the host system files when selinux is not enabled. With selinux enabled, some read access is allowed.

Format For Printing
- XML
- Clone This Bug
- Clone In The Same Product
- Top of page