#VU69290 Incorrect authorization in Podman


Published: 2022-11-14

Vulnerability identifier: #VU69290

Vulnerability risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-2989

CWE-ID: CWE-863

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Podman
Universal components / Libraries / Libraries used by multiple products

Vendor: Container Projects

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to incorrect handling of the supplementary groups in the Podman container engine. A local user with direct access to the affected container where supplementary groups are used can set access permissions and execute a binary code in that container.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Podman: 4.0.0 - 4.2.1

External links
http://bugzilla.redhat.com/show_bug.cgi?id=2121445
http://www.benthamsgaze.org/2022/08/22/vulnerability-in-linux-containers-investigation-and-mitigation/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Ubuntu update for libpod
Red Hat Enterprise Linux 8 update for the container-tools:4.0 module
Multiple vulnerabilities in containerd
SUSE update for podman
SUSE update for podman
Red Hat Enterprise Linux 9 update for buildah
Red Hat Enterprise Linux 9 update for podman
Red Hat Enterprise Linux 8 update for the container-tools:rhel8 module
SUSE update for podman
SUSE update for podman