CVE-2018-10856

Summary

It has been discovered that podman before version 0.6.1 does not drop capabilities when executing a container as a non-root user. This results in unnecessary privileges being granted to the container.

Affected Software

VendorProductVersion RangeStatus
[UNKNOWN]podmanpodman 0.6.1affected

Weaknesses

  • CWE-250: CWE-250

ADP Enrichment

CVE Program Container

Additional References

References