CVE-2024-23651
- EPSS 0.46%
- Published 31.01.2024 22:15:54
- Last modified 21.11.2024 08:58:05
BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Two malicious build steps running in parallel sharing the same cache mounts with subpaths could cause a race condition that can lea...
CVE-2024-23652
- EPSS 4.86%
- Published 31.01.2024 22:15:54
- Last modified 21.11.2024 08:58:05
BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for the moun...
CVE-2024-23653
- EPSS 8.85%
- Published 31.01.2024 22:15:54
- Last modified 21.11.2024 08:58:05
BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In addition to running containers as build steps, BuildKit also provides APIs for running interactive containers based on built ima...
CVE-2024-23650
- EPSS 0.08%
- Published 31.01.2024 22:15:53
- Last modified 21.11.2024 08:58:05
BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit client or frontend could craft a request that could lead to BuildKit daemon crashing with a panic. The issue h...
CVE-2023-26054
- EPSS 0.79%
- Published 06.03.2023 19:15:10
- Last modified 21.11.2024 07:50:40
BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In affected versions when the user sends a build request that contains a Git URL that contains credentials and the build creates a ...