How severe is CVE-2022-4122?

CVE-2022-4122 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2022-4122

Name: fedora
Author: fedoraproject

5.3MEDIUM

A vulnerability was found in buildah. Incorrect following of symlinks while reading .containerignore and .dockerignore results in information disclosure.

Publicado: 12/8/2022Actualizado: 4/22/2025

Descripción

A vulnerability was found in buildah. Incorrect following of symlinks while reading .containerignore and .dockerignore results in information disclosure.

Análisis IAImpulsado por IA

Productos Afectados

podman_projectpodman

4.3.0

fedoraprojectfedora

Referencias

https://bugzilla.redhat.com/show_bug.cgi?id=2144983
Issue TrackingThird Party Advisory
https://github.com/containers/podman/pull/16315
PatchThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2144983
Issue TrackingThird Party Advisory
https://github.com/containers/podman/pull/16315
PatchThird Party Advisory