Vulnerability Details CVE-2019-18837
An issue was discovered in crun before 0.10.5. With a crafted image, it doesn't correctly check whether a target is a symlink, resulting in access to files outside of the container. This occurs in libcrun/linux.c and libcrun/chroot_realpath.c.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.3%
CVSS Severity
CVSS v3 Score 8.6
CVSS v2 Score 5.0
References
- https://github.com/containers/crun/pull/173
- https://github.com/containers/crun/releases/tag/0.10.5
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DTA5SJUAKQUK6HRY2CZVJUIZP5BO3EOG/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ITB2UNEGHXZUR3ATYHWPSK5LJB36N7AP/
- https://github.com/containers/crun/pull/173
- https://github.com/containers/crun/releases/tag/0.10.5
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DTA5SJUAKQUK6HRY2CZVJUIZP5BO3EOG/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ITB2UNEGHXZUR3ATYHWPSK5LJB36N7AP/
Products affected by CVE-2019-18837
-
cpe:2.3:a:crun_project:crun:-
-
cpe:2.3:a:crun_project:crun:0.10
-
cpe:2.3:a:crun_project:crun:0.10.1
-
cpe:2.3:a:crun_project:crun:0.10.2
-
cpe:2.3:a:crun_project:crun:0.10.3
-
cpe:2.3:a:crun_project:crun:0.10.4
-
cpe:2.3:a:crun_project:crun:0.2
-
cpe:2.3:a:crun_project:crun:0.3
-
cpe:2.3:a:crun_project:crun:0.4
-
cpe:2.3:a:crun_project:crun:0.5
-
cpe:2.3:a:crun_project:crun:0.6
-
cpe:2.3:a:crun_project:crun:0.8
-
cpe:2.3:a:crun_project:crun:0.9
-
cpe:2.3:a:crun_project:crun:0.9.1
-
cpe:2.3:o:fedoraproject:fedora:30
-
cpe:2.3:o:fedoraproject:fedora:31