CVE-2024-23652

CVE-2024-23652

Name

CVE-2024-23652

Description

BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for the mountpoints into removing a file outside the container, from the host system. The issue has been fixed in v0.12.5. Workarounds include avoiding using BuildKit frontends from an untrusted source or building an untrusted Dockerfile containing RUN --mount feature.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
security-advisories@github.com	https://github.com/moby/buildkit/pull/4603
security-advisories@github.com	https://github.com/moby/buildkit/releases/tag/v0.12.5
security-advisories@github.com	https://github.com/moby/buildkit/security/advisories/GHSA-4v98-7qmw-rqr8

Type

URI

security-advisories@github.com

https://github.com/moby/buildkit/pull/4603

security-advisories@github.com

https://github.com/moby/buildkit/releases/tag/v0.12.5

security-advisories@github.com

https://github.com/moby/buildkit/security/advisories/GHSA-4v98-7qmw-rqr8

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:mobyproject:buildkit::::::::`	buildkit	>= None	< 0.12.5

CPE URI

Source package

Min version

Max version

cpe:2.3:a:mobyproject:buildkit:*:*:*:*:*:*:*:*

buildkit

>= None

< 0.12.5

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
singularity	edge-community	4.1.1-r0	Oleg Titov <oleg.titov@gmail.com>	fixed
singularity	3.22-community	4.1.1-r0	None	fixed
singularity	3.21-community	4.1.1-r0	None	fixed
singularity	3.20-community	4.1.1-r0	None	fixed
singularity	3.19-community	4.1.1-r0	Oleg Titov <oleg.titov@gmail.com>	fixed
podman	edge-community	4.9.2-r0	Michał Polański <michal@polanski.me>	fixed
podman	3.22-community	4.9.2-r0	None	fixed
podman	3.21-community	4.9.2-r0	None	fixed
podman	3.20-community	4.9.2-r0	None	fixed
docker	edge-community	25.0.2-r0	Jake Buchholz Göktürk <tomalok@gmail.com>	fixed
docker	3.22-community	25.0.2-r0	None	fixed
docker	3.21-community	25.0.2-r0	None	fixed
docker	3.20-community	25.0.2-r0	None	fixed
docker	3.19-community	25.0.2-r0	Jake Buchholz Göktürk <tomalok@gmail.com>	fixed
buildkit	edge-community	0.12.5-r0	Hoang Nguyen <folliekazetani@protonmail.com>	fixed
buildkit	3.22-community	0.12.5-r0	None	fixed
buildkit	3.21-community	0.12.5-r0	None	fixed
buildkit	3.20-community	0.12.5-r0	None	fixed
buildkit	3.19-community	0.12.5-r0	Jakub Panek <me@panekj.dev>	fixed

Source package

Branch

Version

Maintainer

Status

singularity

edge-community

4.1.1-r0

Oleg Titov <oleg.titov@gmail.com>

fixed

singularity

3.22-community