CVE-2024-9676

Name: CVE-2024-9676
Creator: NVD / NIST
Published: 2024-10-15T16:15:06.933+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 6.5/10EPSS 1.34%

Last modified Jun 17, 2026

CVE-2024-9676 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace (`--userns=auto` in Podman and Buildah). EPSS estimates a 1.34% chance of exploitation in the next 30 days.

Description

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image using an automatically assigned user namespace (`--userns=auto` in Podman and Buildah). The containers/storage library will read /etc/passwd inside the container, but does not properly validate if that file is a symlink, which can be used to cause the library to read an arbitrary file on the host.

Metrics

CVSS 3.1

6.5/10

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Probability

1.34%

67.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-22

Affected Software

Vendor	Product	Versions
Redhat	Openshift Container Platform	4.12
Redhat	Openshift Container Platform	4.13
Redhat	Openshift Container Platform	4.14
Redhat	Openshift Container Platform	4.15
Redhat	Openshift Container Platform	4.16
Redhat	Openshift Container Platform	4.17
Redhat	Openshift Container Platform For Arm64	4.12
Redhat	Openshift Container Platform For Arm64	4.13
Redhat	Openshift Container Platform For Arm64	4.14
Redhat	Openshift Container Platform For Arm64	4.15
Redhat	Openshift Container Platform For Arm64	4.16
Redhat	Openshift Container Platform For Ibm Z	4.12
Redhat	Openshift Container Platform For Ibm Z	4.13
Redhat	Openshift Container Platform For Ibm Z	4.14
Redhat	Openshift Container Platform For Ibm Z	4.15
Redhat	Openshift Container Platform For Ibm Z	4.16
Redhat	Openshift Container Platform For Linuxone	4.12
Redhat	Openshift Container Platform For Linuxone	4.13
Redhat	Openshift Container Platform For Linuxone	4.14
Redhat	Openshift Container Platform For Linuxone	4.15
Redhat	Openshift Container Platform For Linuxone	4.16
Redhat	Openshift Container Platform For Power	4.12
Redhat	Openshift Container Platform For Power	4.13
Redhat	Openshift Container Platform For Power	4.14
Redhat	Openshift Container Platform For Power	4.15
Redhat	Openshift Container Platform For Power	4.16
Redhat	Enterprise Linux	9.0
Redhat	Enterprise Linux Eus	9.4
Redhat	Enterprise Linux For Arm 64	9.0_aarch64
Redhat	Enterprise Linux For Arm 64 Eus	9.4_aarch64
Redhat	Enterprise Linux For Ibm Z Systems	9.0_s390x
Redhat	Enterprise Linux For Ibm Z Systems Eus	9.4_s390x
Redhat	Enterprise Linux For Power Little Endian	9.0_ppc64le
Redhat	Enterprise Linux For Power Little Endian Eus	9.4_ppc64le
Redhat	Enterprise Linux Server Aus	9.4
Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	9.4_ppc64le

References

https://access.redhat.com/errata/RHSA-2024:10289
https://access.redhat.com/errata/RHSA-2024:8418Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:8428Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:8437Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:8686Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:8690Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:8694Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:8700Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:8984Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:9051Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:9454Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:9459Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:9926Vendor Advisory
https://access.redhat.com/errata/RHSA-2025:0876
https://access.redhat.com/errata/RHSA-2025:2454
https://access.redhat.com/errata/RHSA-2025:2710
https://access.redhat.com/errata/RHSA-2025:3301
https://access.redhat.com/security/cve/CVE-2024-9676Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2317467Issue Tracking
https://github.com/advisories/GHSA-wq2p-5pc6-wpgfThird Party Advisory
https://github.com/containers/storage/commit/935c58f4b3e364a9c9d33ed06476a831e6ad5679

Timeline

Published: Oct 15, 2024
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2024-9676?

How severe is CVE-2024-9676?

CVE-2024-9676 has a CVSS score of 6.5/10 (MEDIUM severity). The EPSS model estimates a 1.34% probability of exploitation in the next 30 days.

How do I fix CVE-2024-9676?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2024-9676?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST