Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 942557 (CVE-2024-9675) - <app-containers/buildah-1.37.5; symlink traversal can result in denial of service via OOM
Summary: <app-containers/buildah-1.37.5; symlink traversal can result in denial of ser...
Status: CONFIRMED
Alias: CVE-2024-9675
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal
Assignee: Gentoo Security
URL: https://github.com/advisories/GHSA-wq...
Whiteboard: B2 [glsa?]
Keywords:
Depends on: 944940
Blocks: CVE-2024-9676
  Show dependency tree
 
Reported: 2024-10-30 18:01 UTC by Christopher Fore
Modified: 2024-11-26 06:40 UTC (History)
3 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Christopher Fore 2024-10-30 18:01:44 UTC
**Please refer to tracker for full CVE details**


The above is fixed in 1.37.5.
Comment 1 Christopher Fore 2024-10-30 18:06:11 UTC
CVE-2024-9675:

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a RUN instruction in a Container file to mount an arbitrary directory from the host (read/write) into the container as long as those files can be accessed by the user running Buildah.


Also fixed in 1.37.5.
Comment 2 Larry the Git Cow gentoo-dev 2024-10-31 03:36:39 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=774e610664d8a8f9ca1e3f0ed7e186df98ad0c88

commit 774e610664d8a8f9ca1e3f0ed7e186df98ad0c88
Author:     Zac Medico <zmedico@gentoo.org>
AuthorDate: 2024-10-31 03:34:26 +0000
Commit:     Zac Medico <zmedico@gentoo.org>
CommitDate: 2024-10-31 03:36:33 +0000

    app-containers/buildah: add 1.37.5
    
    Bug: https://bugs.gentoo.org/942557
    Signed-off-by: Zac Medico <zmedico@gentoo.org>

 app-containers/buildah/Manifest              |   1 +
 app-containers/buildah/buildah-1.37.5.ebuild | 129 +++++++++++++++++++++++++++
 2 files changed, 130 insertions(+)
Comment 3 Larry the Git Cow gentoo-dev 2024-11-26 03:24:12 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=6e4d097a30fd39a781d3534531be92e53696c264

commit 6e4d097a30fd39a781d3534531be92e53696c264
Author:     Zac Medico <zmedico@gentoo.org>
AuthorDate: 2024-11-26 03:23:11 +0000
Commit:     Zac Medico <zmedico@gentoo.org>
CommitDate: 2024-11-26 03:23:37 +0000

    app-containers/buildah: drop 1.33.7, 1.34.3, 1.35.3, 1.35.4, 1.36.0
    
    Bug: https://bugs.gentoo.org/942557
    Signed-off-by: Zac Medico <zmedico@gentoo.org>

 app-containers/buildah/Manifest              |   5 -
 app-containers/buildah/buildah-1.33.7.ebuild | 160 --------------------------
 app-containers/buildah/buildah-1.34.3.ebuild | 161 ---------------------------
 app-containers/buildah/buildah-1.35.3.ebuild | 134 ----------------------
 app-containers/buildah/buildah-1.35.4.ebuild | 134 ----------------------
 app-containers/buildah/buildah-1.36.0.ebuild | 129 ---------------------
 6 files changed, 723 deletions(-)