#VU69291 Incorrect authorization in buildah


Published: 2022-11-14

Vulnerability identifier: #VU69291

Vulnerability risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-2990

CWE-ID: CWE-863

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
buildah
Client/Desktop applications / Software for system administration

Vendor: Container Projects

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to incorrect handling of the supplementary groups in the Buildah container engine. A local user with direct access to the affected container where supplementary groups are used can set access permissions and execute a binary code in that container.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

buildah: 1.27.0

External links
http://www.benthamsgaze.org/2022/08/22/vulnerability-in-linux-containers-investigation-and-mitigation/
http://bugzilla.redhat.com/show_bug.cgi?id=2121453

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


SUSE update for buildah
Multiple vulnerabilities in OpenShift Container Platform 4.13
OpenShift Container Platform release 4.13 update for golang
Multiple vulnerabilities in OpenShift Container Platform 4.13
Multiple vulnerabilities in containerd
SUSE update for buildah
SUSE update for buildah
Red Hat Enterprise Linux 9 update for buildah
Red Hat Enterprise Linux 9 update for podman
SUSE update for buildah