https://vulnerability.circl.lu/sightings/feed 2026-06-04T00:38:19.083251+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/80da6ea5-7310-4a80-9b4f-41f5224d9233/export 2026-06-04T00:38:19.501443+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "80da6ea5-7310-4a80-9b4f-41f5224d9233", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "RHSA-2025:2701", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11358", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-9675\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to mount an arbitrary directory from the host (read/write) into the container as long as those files can be accessed by the user running Buildah.\n\ud83d\udccf Published: 2024-10-09T14:32:11.922Z\n\ud83d\udccf Modified: 2025-04-10T21:41:41.385Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2024:8563\n2. https://access.redhat.com/errata/RHSA-2024:8675\n3. https://access.redhat.com/errata/RHSA-2024:8679\n4. https://access.redhat.com/errata/RHSA-2024:8686\n5. https://access.redhat.com/errata/RHSA-2024:8690\n6. https://access.redhat.com/errata/RHSA-2024:8700\n7. https://access.redhat.com/errata/RHSA-2024:8703\n8. https://access.redhat.com/errata/RHSA-2024:8707\n9. https://access.redhat.com/errata/RHSA-2024:8708\n10. https://access.redhat.com/errata/RHSA-2024:8709\n11. https://access.redhat.com/errata/RHSA-2024:8846\n12. https://access.redhat.com/errata/RHSA-2024:8984\n13. https://access.redhat.com/errata/RHSA-2024:8994\n14. https://access.redhat.com/errata/RHSA-2024:9051\n15. https://access.redhat.com/errata/RHSA-2024:9454\n16. https://access.redhat.com/errata/RHSA-2024:9459\n17. https://access.redhat.com/errata/RHSA-2025:2445\n18. https://access.redhat.com/errata/RHSA-2025:2449\n19. https://access.redhat.com/errata/RHSA-2025:2454\n20. https://access.redhat.com/errata/RHSA-2025:2701\n21. https://access.redhat.com/errata/RHSA-2025:2710\n22. https://access.redhat.com/errata/RHSA-2025:3301\n23. https://access.redhat.com/errata/RHSA-2025:3573\n24. https://access.redhat.com/security/cve/CVE-2024-9675\n25. https://bugzilla.redhat.com/show_bug.cgi?id=2317458", "creation_timestamp": "2025-04-10T21:49:44.000000Z"} 2025-04-10T21:49:44+00:00 https://vulnerability.circl.lu/sighting/c163c6a4-3050-4b4d-90a1-1ce01201f994/export 2026-06-04T00:38:19.499413+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "c163c6a4-3050-4b4d-90a1-1ce01201f994", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "RHSA-2025:2701", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12130", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11218\n\ud83d\udd25 CVSS Score: 8.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.\n\ud83d\udccf Published: 2025-01-22T04:55:30.649Z\n\ud83d\udccf Modified: 2025-04-16T18:43:10.993Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:0830\n2. https://access.redhat.com/errata/RHSA-2025:0878\n3. https://access.redhat.com/errata/RHSA-2025:0922\n4. https://access.redhat.com/errata/RHSA-2025:0923\n5. https://access.redhat.com/errata/RHSA-2025:1186\n6. https://access.redhat.com/errata/RHSA-2025:1187\n7. https://access.redhat.com/errata/RHSA-2025:1188\n8. https://access.redhat.com/errata/RHSA-2025:1189\n9. https://access.redhat.com/errata/RHSA-2025:1207\n10. https://access.redhat.com/errata/RHSA-2025:1275\n11. https://access.redhat.com/errata/RHSA-2025:1295\n12. https://access.redhat.com/errata/RHSA-2025:1296\n13. https://access.redhat.com/errata/RHSA-2025:1372\n14. https://access.redhat.com/errata/RHSA-2025:1453\n15. https://access.redhat.com/errata/RHSA-2025:1707\n16. https://access.redhat.com/errata/RHSA-2025:1713\n17. https://access.redhat.com/errata/RHSA-2025:1908\n18. https://access.redhat.com/errata/RHSA-2025:1910\n19. https://access.redhat.com/errata/RHSA-2025:1914\n20. https://access.redhat.com/errata/RHSA-2025:2441\n21. https://access.redhat.com/errata/RHSA-2025:2443\n22. https://access.redhat.com/errata/RHSA-2025:2454\n23. https://access.redhat.com/errata/RHSA-2025:2456\n24. https://access.redhat.com/errata/RHSA-2025:2701\n25. https://access.redhat.com/errata/RHSA-2025:2703\n26. https://access.redhat.com/errata/RHSA-2025:2710\n27. https://access.redhat.com/errata/RHSA-2025:2712\n28. https://access.redhat.com/errata/RHSA-2025:3577\n29. https://access.redhat.com/errata/RHSA-2025:3798\n30. https://access.redhat.com/security/cve/CVE-2024-11218\n31. https://bugzilla.redhat.com/show_bug.cgi?id=2326231", "creation_timestamp": "2025-04-16T18:56:07.000000Z"} 2025-04-16T18:56:07+00:00