Github.com/containers/podman/v4

This hub aggregates every CVE we track for Github.com/containers/podman/v4, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 11 most recently published vulnerabilities affecting Github.com/containers/podman/v4.

• CVE-2025-9566Podman: podman kube play command may overwrite host files8.1Sep 5, 2025
• CVE-2025-6032Podman: podman missing tls verification8.3Jun 24, 2025
• CVE-2024-9407Buildah: podman: improper input validation in bind-propagation option of dockerfile run --mount instruction4.7Oct 1, 2024
• CVE-2024-3056Podman: kernel: containers in shared ipc namespace are vulnerable to denial of service attack7.7Aug 2, 2024
• CVE-2024-1753Buildah: full container escape at build time8.6Mar 18, 2024
• CVE-2023-0778A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for acc...6.8Mar 27, 2023
• CVE-2022-4123A flaw was found in Buildah. The local path and the lowest subdirectory may be disclosed due to incorrect absolute path traversal, resulting in an impact to confidentiality.3.3Dec 8, 2022
• CVE-2022-4122A vulnerability was found in buildah. Incorrect following of symlinks while reading .containerignore and .dockerignore results in information disclosure.5.3Dec 8, 2022
• CVE-2022-2989An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to...7.1Sep 13, 2022
• CVE-2022-27649A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby (Docker Engine), where containers were started incorrectl...7.5Apr 4, 2022
• CVE-2019-18466An issue was discovered in Podman in libpod before 1.6.0. It resolves a symlink in the host context during a copy operation from the container to the host, because an undesired glob operation occur...5.5Oct 28, 2019