{"id":"UBUNTU-CVE-2024-9675","details":"A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our cache directory, allowing a `RUN` instruction in a Container file to mount an arbitrary directory from the host (read/write) into the container as long as those files can be accessed by the user running Buildah.","modified":"2026-03-25T19:21:29.944515Z","published":"2024-10-09T15:15:00Z","upstream":["CVE-2024-9675"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-9675"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2024-9675"},{"type":"REPORT","url":"https://github.com/advisories/GHSA-586p-749j-fhwp"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2317458"},{"type":"REPORT","url":"https://github.com/containers/buildah/pull/5780"}],"affected":[{"package":{"name":"golang-github-containers-buildah","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/golang-github-containers-buildah@1.23.1+ds1-2?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.21.3+ds1-1ubuntu1","1.23.1+ds1-2"],"ecosystem_specific":{"binaries":[{"binary_version":"1.23.1+ds1-2","binary_name":"buildah"},{"binary_version":"1.23.1+ds1-2","binary_name":"golang-github-containers-buildah-dev"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-9675.json"}},{"package":{"name":"golang-github-containers-buildah","ecosystem":"Ubuntu:Pro:24.04:LTS","purl":"pkg:deb/ubuntu/golang-github-containers-buildah@1.33.7+ds1-1ubuntu0.24.04.3+esm3?arch=source&distro=esm-apps/noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.28.2+ds1-3build1","1.32.2+ds1-1","1.33.1+ds1-2","1.33.3+ds1-2","1.33.5+ds1-4","1.33.5+ds1-4build1","1.33.5+ds1-4build2","1.33.7+ds1-1","1.33.7+ds1-1ubuntu0.24.04.1","1.33.7+ds1-1ubuntu0.24.04.2","1.33.7+ds1-1ubuntu0.24.04.2+esm1","1.33.7+ds1-1ubuntu0.24.04.2+esm2","1.33.7+ds1-1ubuntu0.24.04.3","1.33.7+ds1-1ubuntu0.24.04.3+esm2","1.33.7+ds1-1ubuntu0.24.04.3+esm3"],"ecosystem_specific":{"binaries":[{"binary_version":"1.33.7+ds1-1ubuntu0.24.04.3+esm3","binary_name":"buildah"},{"binary_version":"1.33.7+ds1-1ubuntu0.24.04.3+esm3","binary_name":"golang-github-containers-buildah-dev"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-9675.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N"},{"type":"Ubuntu","score":"medium"}]}