Security Advisory

CVE-2022-27649

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-04 19:45:43

Last updated 2024-08-03 05:32:59

Assigner redhat

State PUBLISHED

Description

A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby (Docker Engine), where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs.

← Browse all CVEs View on cve.org ↗