It has been discovered that podman before version 0.6.1 does not drop capabilities when executing a container as a non-root user. This results in unnecessary privileges being granted to the container.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-05T07:46:47.230Z

Reserved: 2018-05-09T00:00:00

Link: CVE-2018-10856

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-07-03T01:29:00.643

Modified: 2024-11-21T03:42:09.173

Link: CVE-2018-10856

cve-icon Redhat

Severity : Moderate

Publid Date: 2018-05-31T00:00:00Z

Links: CVE-2018-10856 - Bugzilla

cve-icon OpenCVE Enrichment

No data.