CVE-2023-0778 Information

Description

A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume allowing for access to arbitrary files on the host file system.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=2168256