buildah-tests vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the buildah-tests package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H Improper Privilege Management	<1:1.24.7-1.module+el8.9.0+90313+1336f051
M CVE-2023-39326	<1:1.24.6-7.module+el8.9.0+90165+ead7974e
H Information Exposure	<1:1.24.6-7.module+el8.9.0+90148+6046e3c3
H Exposure of Resource to Wrong Sphere	<1:1.24.6-7.module+el8.9.0+90148+6046e3c3
M Allocation of Resources Without Limits or Throttling	<1:1.24.6-7.module+el8.9.0+90119+2f9ef15c
M Resource Exhaustion	<1:1.24.6-7.module+el8.9.0+90119+2f9ef15c
M HTTP Request Smuggling	<1:1.24.6-7.module+el8.9.0+90119+2f9ef15c
M CVE-2023-39321	<1:1.24.6-7.module+el8.9.0+90119+2f9ef15c
M CVE-2022-41715	<1:1.24.6-7.module+el8.9.0+90119+2f9ef15c
M Cross-site Scripting (XSS)	<1:1.24.6-7.module+el8.9.0+90119+2f9ef15c
M Allocation of Resources Without Limits or Throttling	<1:1.24.6-7.module+el8.9.0+90119+2f9ef15c
M Cross-site Scripting (XSS)	<1:1.24.6-7.module+el8.9.0+90119+2f9ef15c
M Resource Exhaustion	<1:1.24.6-7.module+el8.9.0+90044+a34bc939
M CVE-2022-41723	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Cross-site Scripting (XSS)	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Integer Overflow or Wraparound	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Arbitrary Code Injection	<1:1.24.6-7.module+el8.9.0+90044+a34bc939
M Interpretation Conflict	<1:1.24.6-7.module+el8.9.0+90086+8f2d6fb1
M Incorrect Authorization	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Arbitrary Code Injection	<1:1.24.6-7.module+el8.9.0+90044+a34bc939
M Resource Exhaustion	<1:1.24.6-7.module+el8.9.0+90044+a34bc939
M Resource Exhaustion	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M CVE-2023-24540	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Allocation of Resources Without Limits or Throttling	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Arbitrary Code Injection	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Allocation of Resources Without Limits or Throttling	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Use of Incorrectly-Resolved Name or Reference	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Link Following	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Improper Preservation of Permissions	<1:1.31.3-1.module+el8.9.0+90021+ce997450
M Time-of-check Time-of-use (TOCTOU)	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M Allocation of Resources Without Limits or Throttling	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M Placement of User into Incorrect Group	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M Race Condition	<1:1.27.0-2.module+el8.7.0+20873+328b8baa
L Placement of User into Incorrect Group	<1:1.27.2-2.module+el8.7.0+20877+e0f9ac15
M Incorrect Default Permissions	<1:1.24.5-2.module+el8.7.0+20872+81cbf159
M Access of Resource Using Incompatible Type ('Type Confusion')	<1:1.27.0-2.module+el8.7.0+20873+328b8baa
M CVE-2022-27191	<1:1.27.0-2.module+el8.7.0+20873+328b8baa
M CVE-2022-27664	<1:1.24.6-7.module+el8.9.0+90119+2f9ef15c
M CVE-2022-32189	<1:1.29.1-1.module+el8.8.0+21045+adcb6a64
M Allocation of Resources Without Limits or Throttling	<1:1.24.5-2.module+el8.7.0+20872+81cbf159
M Uncontrolled Recursion	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M Uncontrolled Recursion	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M CVE-2022-32148	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M Uncontrolled Recursion	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M Uncontrolled Recursion	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M HTTP Request Smuggling	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M Uncontrolled Recursion	<1:1.29.1-1.module+el8.8.0+21045+adcb6a64
M Uncontrolled Recursion	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M Uncontrolled Recursion	<1:1.24.6-5.module+el8.8.0+20984+ab6ce66c
M Use of Insufficiently Random Values	<1:1.29.1-1.module+el8.8.0+21045+adcb6a64
H Incorrect Default Permissions	<1:1.24.2-4.module+el8.6.0+20656+53f7e955
M Allocation of Resources Without Limits or Throttling	<0:1.19.9-6.module+el8.7.0+20785+0180d035
H Improper Privilege Management	<0:1.19.9-3.module+el8.6.0+20668+bfa6216f
M Incorrect Default Permissions	<0:1.19.9-2.module+el8.5.0+20637+38ac8416
M Incorrect Default Permissions	<0:1.19.9-2.module+el8.5.0+20637+38ac8416
M Improper Cross-boundary Removal of Sensitive Data	<0:1.11.6-9.0.1.module+el8.5.0+20355+d36cb39d
M Improper Locking	<0:1.22.3-2.0.1.module+el8.5.0+20416+d687fed7
M Origin Validation Error	<0:1.19.7-1.0.1.module+el8.4.0+20157+b6591bfb
M NULL Pointer Dereference	<0:1.19.7-1.0.1.module+el8.4.0+20157+b6591bfb
H Race Condition	<0:1.19.7-1.0.1.module+el8.4.0+20196+91e9c2ae
H Incorrect Authorization	<0:1.11.6-8.0.1.module+el8.3.0+9670+b9fad87d
M Improper Cross-boundary Removal of Sensitive Data	<0:1.16.7-4.0.1.module+el8.3.1+9659+c1901784
M CVE-2020-10749	<0:1.15.1-2.0.1.module+el8.3.0+7866+f387f528
M Out-of-bounds Read	<0:1.15.1-2.0.1.module+el8.3.0+7866+f387f528
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:1.15.1-2.0.1.module+el8.3.0+7866+f387f528
M Use After Free	<0:1.14.9-1.0.1.module+el8.2.1+7658+86e51d52
H Directory Traversal	<0:1.11.6-8.0.1.module+el8.2.0+7615+180dc822
M Use of Incorrectly-Resolved Name or Reference	<0:1.11.6-7.0.1.module+el8.2.0+5584+b2b2d3fb
M Files or Directories Accessible to External Parties	<0:1.11.6-7.0.1.module+el8.2.0+5584+b2b2d3fb
M Resource Exhaustion	<0:1.11.6-7.0.1.module+el8.2.0+5584+b2b2d3fb
H Buffer Overflow	<0:1.11.6-6.0.1.module+el8.1.1+5573+1c3f6079
H Out-of-bounds Write	<0:1.11.6-4.0.1.module+el8.1.1+5502+fbec5cc6
H Incorrect Authorization	<0:1.9.0-5.0.1.module+el8.1.0+5440+994fc847
H Improper Handling of Exceptional Conditions	<0:1.9.0-5.0.1.module+el8.1.0+5440+994fc847
H Insufficiently Protected Credentials	<0:1.9.0-5.0.1.module+el8.1.0+5440+994fc847
H Allocation of Resources Without Limits or Throttling	<0:1.9.0-5.0.1.module+el8.1.0+5440+994fc847
H Resource Exhaustion	<0:1.9.0-5.0.1.module+el8.1.0+5440+994fc847