Home

CVE-2020-10696

Description

A path traversal flaw was found in Buildah in versions before 1.14.5. This flaw allows an attacker to trick a user into building a malicious container image hosted on an HTTP(s) server and then write files to the users system anywhere that the user has permissions.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.301

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2020:2116) buildah security and bug fix update buildah-1.11.6-11.el7_8.x86_64.rpmLinux
(RHSA-2020:2117) podman security update podman-1.6.4-18.el7_8.x86_64.rpmLinux
(RHSA-2020:2117) podman security update podman-docker-1.6.4-18.el7_8.noarch.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update container-selinux-2.124.0-1.gitf958d0c.module+el8.2.0+6370+6fb6c8ca.noarch.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update crit-3.12-9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update criu-debugsource-3.12-9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update fuse-overlayfs-0.3-5.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update fuse-overlayfs-debugsource-0.3-5.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update oci-systemd-hook-debugsource-0.1.15-2.git2d0b8a3.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update oci-umount-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update oci-umount-debugsource-2.3.4-2.git87f9237.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update podman-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update podman-debugsource-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update podman-docker-1.0.0-4.git921f98f.module+el8.2.0+6370+6fb6c8ca.noarch.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update python3-criu-3.12-9.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update runc-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update runc-debugsource-1.0.0-56.rc5.dev.git2abd837.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update slirp4netns-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1926) container-tools:1.0 security and bug fix update slirp4netns-debugsource-0.1-5.dev.gitc4e1bc5.module+el8.2.0+6370+6fb6c8ca.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update buildah-1.11.6-7.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update buildah-debugsource-1.11.6-7.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update buildah-tests-1.11.6-7.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update cockpit-podman-11-1.module+el8.2.0+6369+1f4293b4.noarch.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update conmon-2.0.6-1.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update container-selinux-2.124.0-1.module+el8.2.0+6369+1f4293b4.noarch.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update containernetworking-plugins-0.8.3-4.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update containernetworking-plugins-debugsource-0.8.3-4.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update containers-common-0.1.40-9.module+el8.2.0+6373+4950d421.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update crit-3.12-9.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update criu-3.12-9.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update criu-debugsource-3.12-9.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update fuse-overlayfs-0.7.2-5.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update fuse-overlayfs-debugsource-0.7.2-5.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update podman-1.6.4-11.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update podman-debugsource-1.6.4-11.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update podman-docker-1.6.4-11.module+el8.2.0+6369+1f4293b4.noarch.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update podman-remote-1.6.4-11.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update podman-tests-1.6.4-11.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.2.0+6369+1f4293b4.noarch.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update python3-criu-3.12-9.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update runc-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update runc-debugsource-1.0.0-64.rc10.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update skopeo-0.1.40-9.module+el8.2.0+6373+4950d421.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update skopeo-debugsource-0.1.40-9.module+el8.2.0+6373+4950d421.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update skopeo-tests-0.1.40-9.module+el8.2.0+6373+4950d421.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update slirp4netns-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.2.0+6369+1f4293b4.x86_64.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update toolbox-0.0.7-1.module+el8.2.0+6369+1f4293b4.noarch.rpmLinux
(RHSA-2020:1931) container-tools:2.0 security update udica-0.2.1-2.module+el8.2.0+6369+1f4293b4.noarch.rpmLinux
Oci-systemd-hook update (ELSA-2020-1926) oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.2.0+7621+b33f33e5.x86_64.rpmLinux
Oci-umount update (ELSA-2020-1926) oci-umount-2.3.4-2.git87f9237.module+el8.2.0+7621+b33f33e5.x86_64.rpmLinux
SUSE-SU-2022:3766-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libgpg-error0-1.42-150300.9.3.1.x86_64.rpmLinux
SUSE-SU-2022:3766-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libgpg-error-devel-1.42-150300.9.3.1.x86_64.rpmLinux
SUSE-SU-2022:3766-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libgpg-error0-32bit-1.42-150300.9.3.1.x86_64.rpmLinux
SUSE-SU-2022:3766-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libgpg-error0-debuginfo-1.42-150300.9.3.1.x86_64.rpmLinux
SUSE-SU-2022:3766-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libgpg-error-debugsource-1.42-150300.9.3.1.x86_64.rpmLinux
SUSE-SU-2022:3766-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libgpg-error-devel-debuginfo-1.42-150300.9.3.1.x86_64.rpmLinux
SUSE-SU-2022:3766-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libgpg-error0-32bit-debuginfo-1.42-150300.9.3.1.x86_64.rpmLinux
container-tools:2.0 security update (RLSA-2020:1931) toolbox-0.0.7-1.module+el8.5.0+770+e2f49861.noarch.rpmLinux
container-tools:rhel8 security update (RLSA-2020:1932) toolbox-0.0.7-1.module+el8.5.0+770+e2f49861.noarch.rpmLinux
Buildah update (ELSA-2021-0705) buildah-1.5-8.gite94b4f9.0.1.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Container-selinux update (ELSA-2021-0705) container-selinux-2.124.0-1.gitf958d0c.module+el8.3.0+9668+293abd4d.noarch.rpmLinux
Containernetworking-plugins update (ELSA-2021-0705) containernetworking-plugins-0.7.4-4.git9ebe139.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Containers-common update (ELSA-2021-0705) containers-common-0.1.32-6.git1715c90.0.1.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Crit update (ELSA-2021-0705) crit-3.12-9.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Criu update (ELSA-2021-0705) criu-3.12-9.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Fuse-overlayfs update (ELSA-2021-0705) fuse-overlayfs-0.3-5.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Oci-systemd-hook update (ELSA-2021-0705) oci-systemd-hook-0.1.15-2.git2d0b8a3.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Oci-umount update (ELSA-2021-0705) oci-umount-2.3.4-2.git87f9237.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Podman update (ELSA-2021-0705) podman-1.0.0-8.git921f98f.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Podman-docker update (ELSA-2021-0705) podman-docker-1.0.0-8.git921f98f.module+el8.3.0+9668+293abd4d.noarch.rpmLinux
Python3-criu update (ELSA-2021-0705) python3-criu-3.12-9.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Runc update (ELSA-2021-0705) runc-1.0.0-56.rc5.dev.git2abd837.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Skopeo update (ELSA-2021-0705) skopeo-0.1.32-6.git1715c90.0.1.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux
Slirp4netns update (ELSA-2021-0705) slirp4netns-0.1-5.dev.gitc4e1bc5.module+el8.3.0+9668+293abd4d.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234