podman vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the podman package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
H Allocation of Resources Without Limits or Throttling	<7:5.6.0-12.el10_1
M CVE-2025-68121	<7:5.6.0-12.el10_1
H Excessive Platform Resource Consumption within a Loop	<7:5.6.0-12.el10_1
M Allocation of Resources Without Limits or Throttling	<7:5.6.0-12.el10_1
M CVE-2025-68121	*
M Directory Traversal	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Missing Reference to Active Allocated Resource	*
H Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Directory Traversal	*
M Server-Side Request Forgery (SSRF)	*
M NULL Pointer Dereference	*
M Server-Side Request Forgery (SSRF)	*
M Server-Side Request Forgery (SSRF)	*
H Reachable Assertion	<7:5.6.0-11.el10_1
H Excessive Platform Resource Consumption within a Loop	*
M Allocation of Resources Without Limits or Throttling	<7:5.6.0-8.el10_1
M Allocation of Resources Without Limits or Throttling	<6:5.4.0-14.el10_0
H Link Following	<6:5.4.0-14.el10_0
M Improper Certificate Validation	*
M Improper Certificate Validation	*
M Resource Exhaustion	*
M Reachable Assertion	*
M Reachable Assertion	*
H Reachable Assertion	*
H Link Following	<7:5.6.0-6.el10_1
M Race Condition	<7:5.6.0-5.el10_1
H Directory Traversal	<7:5.6.0-5.el10_1
M Creation of Immutable Text Using String Concatenation	*
M Creation of Immutable Text Using String Concatenation	*
H Link Following	*
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Improper Output Neutralization for Logs	*
M Improper Output Neutralization for Logs	*
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Information Exposure	*
M Expected Behavior Violation	*
M Expected Behavior Violation	*
M Expected Behavior Violation	*
M Expected Behavior Violation	*
M Creation of Temporary File With Insecure Permissions	*
H Directory Traversal	<6:5.4.0-13.el10_0
M Allocation of Resources Without Limits or Throttling	*
M Allocation of Resources Without Limits or Throttling	*
M Time-of-check Time-of-use (TOCTOU)	*
M Time-of-check Time-of-use (TOCTOU)	*
H Improper Certificate Validation	<6:5.4.0-12.el10_0
H Improper Privilege Management	*
M CVE-2025-4673	*
M CVE-2025-4673	*
M HTTP Request Smuggling	<6:5.4.0-10.el10_0
M Improper Input Validation	*
M Improper Input Validation	*
M Improperly Controlled Sequential Memory Allocation	*
L Improper Verification of Cryptographic Signature	*
M Improper Input Validation	*
M Information Exposure	*
M Cross-site Scripting (XSS)	*
M Directory Traversal	*
M Allocation of Resources Without Limits or Throttling	<6:5.4.0-9.el10_0
H Allocation of Resources Without Limits or Throttling	<6:5.4.0-9.el10_0
H Allocation of Resources Without Limits or Throttling	*
M Improper Input Validation	*
L Improper Verification of Cryptographic Signature	*
M Information Exposure	*
L Incorrect Authorization	*
L Incorrect Authorization	*
M Cross-site Scripting (XSS)	*
M Improper Input Validation	*
M Resource Exhaustion	*
M Missing Release of Resource after Effective Lifetime	*
M Buffer Overflow	*
L Access of Resource Using Incompatible Type ('Type Confusion')	*
C Incorrect Authorization	*
L Resource Exhaustion	*
M Directory Traversal	*
L NULL Pointer Dereference	*
M Use of Uninitialized Variable	*
L Improper Input Validation	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Out-of-bounds Read	*
M Improper Validation of Integrity Check Value	*
M Improper Certificate Validation	*
L Race Condition	*
L Placement of User into Incorrect Group	*
L Authentication Bypass by Primary Weakness	*
L Loop with Unreachable Exit Condition ('Infinite Loop')	*
H Resource Exhaustion	*
L Directory Traversal	*
L Loop with Unreachable Exit Condition ('Infinite Loop')	*
M Integer Overflow or Wraparound	*
L Improper Input Validation	*
M Improper Input Validation	*
M Race Condition	*
M Improper Input Validation	*
M Resource Exhaustion	*
M Information Exposure	*
M Resource Exhaustion	*
M Link Following	*
M Insufficiently Protected Credentials	*
H Incorrect Authorization	*
M Origin Validation Error	*
M Incorrect Default Permissions	*
M Incorrect Default Permissions	*
H Resource Exhaustion	*
M HTTP Request Smuggling	*
M HTTP Request Smuggling	*
M Use After Free	*
M Information Exposure	*
M Information Exposure	*
M Incorrect Calculation	*
M Incorrect Calculation	*
M Time-of-check Time-of-use (TOCTOU)	*
M Resource Exhaustion	*
H Link Following	*

Vulnerability

Vulnerable Version

Allocation of Resources Without Limits or Throttling

<7:5.6.0-12.el10_1