Bug 2493620 (CVE-2026-57231) - CVE-2026-57231 podman: Podman: Information disclosure via malicious container image environment variables
Summary: CVE-2026-57231 podman: Podman: Information disclosure via malicious container...
Keywords:
Status: NEW
Alias: CVE-2026-57231
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 2495098 2495099 2495100 2495101 2495102 2495095
Blocks:
TreeView+ depends on / blocked
 
Reported: 2026-06-26 17:01 UTC by OSIDB Bzimport
Modified: 2026-07-13 08:29 UTC (History)
30 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2026:37072 0 None None None 2026-07-09 05:14:47 UTC
Red Hat Product Errata RHSA-2026:37123 0 None None None 2026-07-09 07:15:59 UTC
Red Hat Product Errata RHSA-2026:38504 0 None None None 2026-07-13 08:29:01 UTC

Description OSIDB Bzimport 2026-06-26 17:01:58 UTC
Podman is a tool for managing OCI containers and pods. From 1.8.1 until 5.8.4, a container image that contains a environment variable with just a key and no value can trick podman into passing that variable from the host into the container. This is made worse by the fact that using an asterisk (*) will cause podman to pass all host variables into the container. So essentially a malicious image can exfiltrate all podman environment variables that are set in the session from where the container is launched. This vulnerability is fixed in 5.8.4 and 6.0.0.

Comment 2 errata-xmlrpc 2026-07-09 05:14:45 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2026:37072 https://access.redhat.com/errata/RHSA-2026:37072

Comment 3 errata-xmlrpc 2026-07-09 07:15:56 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2026:37123 https://access.redhat.com/errata/RHSA-2026:37123

Comment 4 errata-xmlrpc 2026-07-13 08:28:59 UTC
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2026:38504 https://access.redhat.com/errata/RHSA-2026:38504


Note You need to log in before you can comment on or make changes to this bug.