#VU69290 Incorrect authorization in Podman - CVE-2022-2989


Vulnerability identifier: #VU69290

Vulnerability risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-2989

CWE-ID: CWE-863

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Podman
Universal components / Libraries / Libraries used by multiple products

Vendor: Container Projects

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to incorrect handling of the supplementary groups in the Podman container engine. A local user with direct access to the affected container where supplementary groups are used can set access permissions and execute a binary code in that container.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Podman: 4.0.0 rc1 - 4.2.1

External links
https://bugzilla.redhat.com/show_bug.cgi?id=2121445
https://www.benthamsgaze.org/2022/08/22/vulnerability-in-linux-containers-investigation-and-mitigation/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


openEuler 22.03 LTS SP4 update for podman
openEuler 22.03 LTS SP3 update for podman
Gentoo update for podman
Ubuntu update for libpod
Anolis OS update for container-tools:an8 module
Red Hat Enterprise Linux 8 update for the container-tools:4.0 module
Multiple vulnerabilities in containerd
SUSE update for podman
SUSE update for podman
Red Hat Enterprise Linux 9 update for buildah