Bug 2367235 (CVE-2025-4953)

Summary: CVE-2025-4953 podman: Build Context Bind Mount
Product: [Other] Security Response Reporter: OSIDB Bzimport <bzimport>
Component: vulnerabilityAssignee: Product Security DevOps Team <prodsec-dev>
Status: NEW --- QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: jhonce, mheon, nalin, security-response-team, trathi, tsweeney
Target Milestone: ---Keywords: Security
Target Release: ---Flags: tsweeney: needinfo? (nalin)
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: ---
Doc Text:
A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible.
 Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2395827    
Bug Blocks:    
Deadline: 2025-09-16   

Description OSIDB Bzimport 2025-05-19 11:56:31 UTC 
In the Dockerfile I added "sleep 300". After 300 seconds the build context directory will be deleted by Podman but before that an unprivileged user on the host has access to a file that has permissions 4777
Comment 9 errata-xmlrpc 2025-10-01 13:15:09 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.16

Via RHSA-2025:16724 https://access.redhat.com/errata/RHSA-2025:16724
Comment 10 errata-xmlrpc 2025-10-01 16:34:30 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.18

Via RHSA-2025:16729 https://access.redhat.com/errata/RHSA-2025:16729
Comment 11 errata-xmlrpc 2025-10-16 10:59:38 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.12

Via RHSA-2025:17669 https://access.redhat.com/errata/RHSA-2025:17669
Comment 12 errata-xmlrpc 2025-12-03 10:33:12 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.17

Via RHSA-2025:22265 https://access.redhat.com/errata/RHSA-2025:22265
Comment 13 errata-xmlrpc 2025-12-05 13:27:08 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.13

Via RHSA-2025:22275 https://access.redhat.com/errata/RHSA-2025:22275
Comment 14 errata-xmlrpc 2025-12-10 23:12:43 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.16

Via RHSA-2025:22724 https://access.redhat.com/errata/RHSA-2025:22724
Comment 15 errata-xmlrpc 2025-12-11 05:10:34 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.18

Via RHSA-2025:22695 https://access.redhat.com/errata/RHSA-2025:22695
Comment 16 errata-xmlrpc 2025-12-11 05:12:30 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.14

Via RHSA-2025:22732 https://access.redhat.com/errata/RHSA-2025:22732
Comment 17 errata-xmlrpc 2026-01-07 07:15:19 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.15

Via RHSA-2025:23113 https://access.redhat.com/errata/RHSA-2025:23113