Nixpkgs security tracker

Permalink CVE-2024-5154

8.1 HIGH

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Privileges Required (PR): High (H)
User Interaction (UI): Required (R)
Scope (S): Changed (C)
Confidentiality (C): High (H)
Integrity (I): High (H)
Availability (A): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): High (H)
Modified User Interaction (MUI): Required (R)
Modified Confidentiality (MC): High (H)
Modified Scope (MS): Changed (C)
Modified Integrity (MI): High (H)
Modified Availability (MA): None (N)

updated 1 year, 5 months ago by @LeSuisse Activity log

Created suggestion 1 year, 5 months ago
@fricklerhandwerk accepted 1 year, 5 months ago
@fricklerhandwerk marked as untriaged 1 year, 5 months ago
@fricklerhandwerk accepted 1 year, 5 months ago
@LeSuisse dismissed 1 year, 5 months ago

Cri-o: malicious container can create symlink on host

A flaw was found in cri-o. A malicious container can create a symbolic link to arbitrary files on the host via directory traversal (“../“). This flaw allows the container to read and write to arbitrary files on the host system.

References

RHSA-2024:3676 x_refsource_REDHATvendor-advisoryx_transferred
RHSA-2024:3700 x_refsource_REDHATvendor-advisoryx_transferred
RHSA-2024:4008 x_refsource_REDHATvendor-advisoryx_transferred
RHSA-2024:4486 x_refsource_REDHATvendor-advisoryx_transferred
https://access.redhat.com/security/cve/CVE-2024-5154 vdb-entryx_refsource_REDHATx_transferred
RHBZ#2280190 x_refsource_REDHATissue-trackingx_transferred
https://github.com/cri-o/cri-o/security/advisories/GHSA-j9hf-98c3-wrm8 x_transferred
RHSA-2024:10818 x_refsource_REDHATvendor-advisory
RHSA-2024:4159 x_refsource_REDHATvendor-advisory

Affected products

cri-o

<1.29.5
*
<1.28.7
<1.30.1

rhcos

conman

conmon

kernel

openshift

container-tools:rhel8/podman

Matching in nixpkgs

pkgs.cri-o

Open Container Initiative-based implementation of the Kubernetes Container Runtime Interface

nixos-unstable 1.31.2
- nixpkgs-unstable 1.31.2
- nixos-unstable-small 1.31.3

pkgs.cri-o-unwrapped

Open Container Initiative-based implementation of the Kubernetes Container Runtime Interface

nixos-unstable 1.31.2
- nixpkgs-unstable 1.31.2
- nixos-unstable-small 1.31.3

Package maintainers

@saschagrunert Sascha Grunert <mail@saschagrunert.de>
@vdemeester Vincent Demeester <vincent@sbr.pm>

Permalink CVE-2024-9341

5.4 MEDIUM

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): High (H)
Privileges Required (PR): Low (L)
User Interaction (UI): Required (R)
Scope (S): Unchanged (U)
Confidentiality (C): High (H)
Integrity (I): Low (L)
Availability (A): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): High (H)
Modified Privileges Required (MPR): Low (L)
Modified User Interaction (MUI): Required (R)
Modified Confidentiality (MC): High (H)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): Low (L)
Modified Availability (MA): None (N)

updated 1 year, 5 months ago by @fricklerhandwerk Activity log

Created suggestion 1 year, 5 months ago
@fricklerhandwerk dismissed 1 year, 5 months ago

Podman: buildah: cri-o: fips crypto-policy directory mounting issue in containers/common go library

A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host directories inside a container. This issue also allows attackers to access critical host files, bypassing the intended isolation between containers and the host system.