CVE-2026-55686

NameCVE-2026-55686
DescriptionPodman is a tool for managing OCI containers and pods. From 3.0.0 until 5.7.1, running a malicious container image where the WORKDIR path contains a symlink can create a directory or modify ownership on the host filesystem. Modified ownership is less likely to happen as that requires help from an untrusted/malicious process that mutates the host filesystem tree during dereferencing of the WORKDIR path, to trigger a race condition. This vulnerability is fixed in 5.7.1.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
podman (PTS)trixie5.4.2+ds1-2vulnerable
forky, sid5.8.2+ds1-3fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
podmansource(unstable)5.8.1+ds1-2

Notes

https://github.com/podman-container-tools/podman/security/advisories/GHSA-q6r4-3wmg-fwcq
Fixed by: https://github.com/podman-container-tools/podman/commit/d18e44e9abb3bf5b7294aa70806e1368fdddfdd0 (v6.0.0-rc1)
Fixed by: https://github.com/podman-container-tools/podman/commit/7ce2e00ab140c11a68301f0b161f51984131a858 (v5.7.1)
Search for package or bug name: Reporting problems