VDB
DEBIAN-CVE-2022-4122
DEBIAN-CVE-2022-4122
PUBLISHED
CVSS 5.300000190734863 MEDIUM
A vulnerability was found in buildah. Incorrect following of symlinks while reading .containerignore and .dockerignore results in information disclosure.
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | golang-github-containers-buildah | 0, *, * |
| Debian:12 | golang-github-containers-buildah | 1.37.3+ds1, 0, 1.28.2+ds1 |
| Debian:11 | golang-github-containers-buildah | 1.35.3+ds1-1, *, 1.37.0+ds1-1 |
| Debian:13 | golang-github-containers-buildah | *, *, * |
Timeline
- Dec 8, 2022 CVE Published
- Apr 28, 2026 CVE Updated