python-podman-api (AlmaLinux:8) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:8 package python-podman-api, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (16)
CVE-2020-10696 — CVSS 8.8 (high): A path traversal flaw was found in Buildah in versions before 1.14.5. This flaw allows an attacker to trick a user into building a…
CVE-2021-30465 — CVSS 8.5 (high): runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be…
CVE-2020-1983 — CVSS 7.5 (high): A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of…
CVE-2022-27649 — CVSS 7.5 (high): A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby…
CVE-2020-14040 — CVSS 7.5 (high): The x/text package before 0.3.3 for Go has a vulnerability in encoding/unicode that could lead to the UTF-16 decoder entering an infinite…
CVE-2019-19921 — CVSS 7.0 (high): runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To…
CVE-2021-20188 — CVSS 7.0 (high): A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked…
CVE-2022-27651 — CVSS 6.8 (medium): A flaw was found in buildah where containers were incorrectly started with non-empty default permissions. A bug was found in Moby (Docker…
CVE-2020-10756 — CVSS 6.5 (medium): An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the…
CVE-2020-10749 — CVSS 6.0 (medium): A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in…
CVE-2020-1726 — CVSS 5.9 (medium): A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they…
CVE-2020-8608 — CVSS 5.6 (medium): In libslirp 4.1.0, as used in QEMU 4.2.0, tcp_subr.c misuses snprintf return values, leading to a buffer overflow in later code.
CVE-2020-7039 — CVSS 5.6 (medium): tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can…
CVE-2021-3602 — CVSS 5.5 (medium): An information disclosure flaw was found in Buildah, when building containers using chroot isolation. Running processes in container builds…
CVE-2020-14370 — CVSS 5.3 (medium): An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink API or…
CVE-2020-1702 — CVSS 3.3 (low): A malicious container image can consume an unbounded amount of memory when being pulled to a container runtime host, such as Red Hat…