CVE-2022-27649

CVE-2022-27649

A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby (Docker Engine), where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs.

Source: CVE-2022-27649

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다