It has been discovered that podman before version 0.6.1 does not drop capabilities when executing a container as a non-root user. This results in unnecessary privileges being granted to the container.
{
"unresolved_ranges": [
{
"cpes": [
"cpe:2.3:a:libpod_project:libpod:*:*:*:*:*:*:*:*"
],
"vendor_product": "libpod_project:libpod",
"extracted_events": [
{
"fixed": "0.6.1"
}
],
"source": "CPE_RANGE"
}
]
}