github.com/containers/libpod (Go) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Go package github.com/containers/libpod, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2021-20188 — CVSS 7.0 (high): A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked…
CVE-2020-1726 — CVSS 5.9 (medium): A flaw was discovered in Podman where it incorrectly allows containers when created to overwrite existing files in volumes, even if they…
CVE-2019-18466 — CVSS 5.5 (medium): An issue was discovered in Podman in libpod before 1.6.0. It resolves a symlink in the host context during a copy operation from the…
CVE-2020-14370 — CVSS 5.3 (medium): An information disclosure vulnerability was found in containers/podman in versions before 2.0.5. When using the deprecated Varlink API or…