[Bug 1231786] New: VUL-0: CVE-2024-9676: cri-o: containers/storage: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS)
https://bugzilla.suse.com/show_bug.cgi?id=1231786 Bug ID: 1231786 Summary: VUL-0: CVE-2024-9676: cri-o: containers/storage: symlink traversal vulnerability in the containers/storage library can cause Denial of Service (DoS) Classification: openSUSE Product: openSUSE Distribution Version: Leap 16.0 Hardware: Other URL: https://smash.suse.de/issue/424087/ OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: andrea.mattiazzo@suse.com QA Contact: qa-bugs@suse.de CC: andrea.mattiazzo@suse.com, security-team@suse.de, smash_bz@suse.de Depends on: 1231698, 1231785 Target Milestone: --- Found By: Security Response Team Blocker: --- A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace (`--userns=auto` in Podman and Buildah). The containers/storage library will read /etc/passwd inside the container, but does not properly validate if that file is a symlink, which can be used to cause the library to read an arbitrary file on the host. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-9676 https://www.cve.org/CVERecord?id=CVE-2024-9676 https://access.redhat.com/security/cve/CVE-2024-9676 https://bugzilla.redhat.com/show_bug.cgi?id=2317467 https://github.com/advisories/GHSA-wq2p-5pc6-wpgf -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1231786 https://bugzilla.suse.com/show_bug.cgi?id=1231786#c1 Andrea Mattiazzo <andrea.mattiazzo@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks| |1231785 QA Contact|qa-bugs@suse.de |security-team@suse.de Depends on|1231698, 1231785 | Assignee|security-team@suse.de |rbrown@suse.com --- Comment #1 from Andrea Mattiazzo <andrea.mattiazzo@suse.com> --- Tracking as affected: - openSUSE:Factory/cri-o -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1231786 Andrea Mattiazzo <andrea.mattiazzo@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks| |1231788 -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1231786 Andrea Mattiazzo <andrea.mattiazzo@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks|1231788 | -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1231786 SMASH SMASH <smash_bz@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P3 - Medium -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1231786 Andrea Mattiazzo <andrea.mattiazzo@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|VUL-0: CVE-2024-9676: |VUL-0: CVE-2024-9676: |cri-o: containers/storage: |cri-o: |symlink traversal |github.com/containers/stora |vulnerability in the |ge: symlink traversal |containers/storage library |vulnerability in the |can cause Denial of Service |containers/storage library |(DoS) |can cause Denial of Service | |(DoS) -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com