Github.com/containers/podman/v3
This hub aggregates every CVE we track for Github.com/containers/podman/v3, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
6
CVEs tracked
0
Critical
3
High
0
In CISA KEV
Severity distribution
HIGH3MEDIUM3
Monthly trend
0
1
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 6 most recently published vulnerabilities affecting Github.com/containers/podman/v3.
- CVE-2024-9407Buildah: podman: improper input validation in bind-propagation option of dockerfile run --mount instruction4.7
- CVE-2024-3056Podman: kernel: containers in shared ipc namespace are vulnerable to denial of service attack7.7
- CVE-2022-2989An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to...7.1
- CVE-2022-1227A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerabili...8.8
- CVE-2021-4024A flaw was found in podman. The `podman machine` function (used to create and manage Podman virtual machine containing a Podman process) spawns a `gvproxy` process on the host system. The `gvproxy`...6.5
- CVE-2021-20199Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 (including from remote hosts). This impacts containerized applications that trust localhost (127.0.01)...5.9
Product normalization is registry-driven with AI assist and human review. How it works