{"id":"GO-2024-3237","summary":"NVIDIA Container Toolkit allows specially crafted container image to create empty files on the host file system in github.com/NVIDIA/nvidia-container-toolkit","details":"NVIDIA Container Toolkit allows specially crafted container image to create empty files on the host file system in github.com/NVIDIA/nvidia-container-toolkit","aliases":["CVE-2024-0133","GHSA-f748-7hpg-88ch"],"modified":"2026-02-04T02:58:11.643435Z","published":"2024-11-04T15:44:16Z","related":["CGA-qqv4-68p4-qmwx"],"database_specific":{"review_status":"UNREVIEWED","url":"https://pkg.go.dev/vuln/GO-2024-3237"},"references":[{"type":"ADVISORY","url":"https://github.com/NVIDIA/nvidia-container-toolkit/security/advisories/GHSA-f748-7hpg-88ch"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-0133"},{"type":"WEB","url":"https://advisory-inbox.githubapp.com/advisory_reviews/GHSA-wqq7-v22c-gpfp"},{"type":"WEB","url":"https://github.com/NVIDIA/libnvidia-container/security/advisories/GHSA-xff4-h7r9-vrpf"},{"type":"WEB","url":"https://nvidia.custhelp.com/app/answers/detail/a_id/5582"}],"affected":[{"package":{"name":"github.com/NVIDIA/nvidia-container-toolkit","ecosystem":"Go","purl":"pkg:golang/github.com/NVIDIA/nvidia-container-toolkit"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"1.16.2"}]}],"ecosystem_specific":{},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2024-3237.json"}}],"schema_version":"1.7.3"}