A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
podman project podman - |
||
redhat enterprise linux 8.0 |
||
redhat enterprise linux 9.0 |