Vulnerability Report: GO-2022-0417
- CVE-2022-27651, GHSA-c3g4-w6cv-6v7h
- Affects: github.com/containers/buildah
- Published: Jul 01, 2022
- Modified: Jun 12, 2023
Containers are created with non-empty inheritable Linux process capabilities, permitting programs with inheritable file capabilities to elevate those capabilities to the permitted set during execve(2). This bug does not affect the container security sandbox, as the inheritable set never contains more capabilities than are included in the container's bounding set.
Affected Packages
-
PathVersionsSymbols
-
before v1.25.0
-
before v1.25.0all symbols
Aliases
References
- https://github.com/containers/buildah/commit/e7e55c988c05dd74005184ceb64f097a0cfe645b
- https://bugzilla.redhat.com/show_bug.cgi?id=2066840
- https://vuln.go.dev/ID/GO-2022-0417.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.