It has been found that multiple containers modify the permissions of /etc/passwd to make them modifiable by users other than root. An attacker with access to the running container can exploit this to modify /etc/passwd to add a user and escalate their privileges. This CVE is specific to openjdk containers (ubi8/openjdk-8, ubi8/openjdk-11, openjdk/openjdk-11-rhel7, redhat-openjdk-18/openjdk18-openshift)
Acknowledgments: Name: Lukas Najman (Quadient)
This issue has been addressed in the following products: Red Hat Build of OpenJDK Via RHSA-2021:0946 https://access.redhat.com/errata/RHSA-2021:0946
This issue has been addressed in the following products: Red Hat Build of OpenJDK Via RHSA-2021:0945 https://access.redhat.com/errata/RHSA-2021:0945
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-20264