A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible.

Affected Packages

Go github.com/containers/podman/v5

Affected versions: 0 (last affected: 5.5.0)

Related CVEs

CVE-2025-4953

Key Information

GHSA ID

GHSA-m68q-4hqr-mc6f

Published

September 16, 2025 3:32 PM

Last Modified

September 16, 2025 8:21 PM

CVSS Score

7.5 /10

Primary Ecosystem

Primary Package

github.com/containers/podman/v5

GitHub Reviewed

✓ Yes

Dataset

Last updated: September 19, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.