podman-docker vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the podman-docker package. This does not include vulnerabilities belonging to this package’s dependencies.

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Vulnerability	Vulnerable Version
M Directory Traversal	*
M Server-Side Request Forgery (SSRF)	*
M NULL Pointer Dereference	*
M Server-Side Request Forgery (SSRF)	*
H Excessive Platform Resource Consumption within a Loop	*
M Improper Certificate Validation	*
M Reachable Assertion	*
H Reachable Assertion	<7:5.6.0-11.el10_1
M Creation of Immutable Text Using String Concatenation	*
M Allocation of Resources Without Limits or Throttling	<7:5.6.0-8.el10_1
H Link Following	<7:5.6.0-6.el10_1
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Improper Output Neutralization for Logs	*
M Allocation of Resources Without Limits or Throttling	*
M Expected Behavior Violation	*
M Expected Behavior Violation	*
M Creation of Temporary File With Insecure Permissions	*
M CVE-2025-4673	*
H Directory Traversal	<7:5.6.0-5.el10_1
M Allocation of Resources Without Limits or Throttling	*
M Race Condition	<7:5.6.0-5.el10_1
M Improper Input Validation	*
M Information Exposure	*
L Improper Verification of Cryptographic Signature	*
M Time-of-check Time-of-use (TOCTOU)	*
M Improper Input Validation	*
M Cross-site Scripting (XSS)	*
M Improper Input Validation	*
M Improperly Controlled Sequential Memory Allocation	*
H Improper Privilege Management	*
M Directory Traversal	*
H Improper Certificate Validation	<6:5.4.0-12.el10_0
M HTTP Request Smuggling	<6:5.4.0-10.el10_0
M Allocation of Resources Without Limits or Throttling	<6:5.4.0-9.el10_0
H Allocation of Resources Without Limits or Throttling	<6:5.4.0-9.el10_0