CVE-2021-3762 – quay/claircore: directory traversal when scanning crafted container image layer allows for arbitrary file write

https://notcve.org/view.php?id=CVE-2021-3762

A directory traversal vulnerability was found in the ClairCore engine of Clair. An attacker can exploit this by supplying a crafted container image which, when scanned by Clair, allows for arbitrary file write on the filesystem, potentially allowing for remote code execution. Se ha encontrado una vulnerabilidad de salto de directorio en el motor ClairCore de Clair. Un atacante puede explotar esto al suministrar una imagen de contenedor diseñada que, cuando es escaneada por Clair, permite una escritura de archivos arbitrarios en el sistema de archivos, permitiendo potencialmente una ejecución de código remota • https://bugzilla.redhat.com/show_bug.cgi?id=2000795 https://github.com/quay/clair/pull/1379 https://github.com/quay/clair/pull/1380 https://github.com/quay/claircore/commit/691f2023a1720a0579e688b69a2f4bfe1f4b7821 https://github.com/quay/claircore/pull/478 https://vulmon.com/exploitdetails?qidtp=maillist_oss_security&qid=d19fce9ede06e13dfb5630ece7f14f83 https://access.redhat.com/security/cve/CVE-2021-3762 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •