ΠΠΎΠ»ΠΈΡΠ΅ΡΡΠ²ΠΎ 14
ΠΠΎΠ»ΠΈΡΠ΅ΡΡΠ²ΠΎ 14
CVE-2021-4024
A flaw was found in podman. The `podman machine` function (used to create and manage Podman virtual machine containing a Podman process) spawns a `gvproxy` process on the host system. The `gvproxy` API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall, an attacker can potentially use the `gvproxy` API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the host's services by forwarding all ports to the VM.
CVE-2021-4024
A flaw was found in podman. The `podman machine` function (used to create and manage Podman virtual machine containing a Podman process) spawns a `gvproxy` process on the host system. The `gvproxy` API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall, an attacker can potentially use the `gvproxy` API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the host's services by forwarding all ports to the VM.
CVE-2021-4024
A flaw was found in podman. The `podman machine` function (used to create and manage Podman virtual machine containing a Podman process) spawns a `gvproxy` process on the host system. The `gvproxy` API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall, an attacker can potentially use the `gvproxy` API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the host's services by forwarding all ports to the VM.
CVE-2021-4024
A flaw was found in podman. The `podman machine` function (used to cre ...
GHSA-3cf2-x423-x582
Exposure of Sensitive Information to an Unauthorized Actor and Origin Validation Error in podman
BDU:2023-03676
Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡΡ ΠΈΠ½ΡΡΡΡΠΌΠ΅Π½ΡΠ° ΡΠΏΡΠ°Π²Π»Π΅Π½ΠΈΡ Π²ΠΈΡΡΡΠ°Π»ΠΈΠ·Π°ΡΠΈΠ΅ΠΉ podman-machine ΠΏΡΠΎΠ³ΡΠ°ΠΌΠΌΠ½ΠΎΠ³ΠΎ ΡΡΠ΅Π΄ΡΡΠ²Π° ΡΠΏΡΠ°Π²Π»Π΅Π½ΠΈΡ ΠΈ Π·Π°ΠΏΡΡΠΊΠ° OCI-ΠΊΠΎΠ½ΡΠ΅ΠΉΠ½Π΅ΡΠΎΠ² Podman, ΠΏΠΎΠ·Π²ΠΎΠ»ΡΡΡΠ°Ρ Π½Π°ΡΡΡΠΈΡΠ΅Π»Ρ ΠΏΠΎΠ»ΡΡΠΈΡΡ Π½Π΅ΡΠ°Π½ΠΊΡΠΈΠΎΠ½ΠΈΡΠΎΠ²Π°Π½Π½ΡΠΉ Π΄ΠΎΡΡΡΠΏ ΠΊ Π·Π°ΡΠΈΡΠ°Π΅ΠΌΠΎΠΉ ΠΈΠ½ΡΠΎΡΠΌΠ°ΡΠΈΠΈ
RLSA-2024:10289
Moderate: container-tools:rhel8 security update
ELSA-2024-10289
ELSA-2024-10289: container-tools:ol8 security update (MODERATE)
SUSE-SU-2023:0326-1
Security update for podman
SUSE-SU-2023:0187-1
Security update for podman
openSUSE-SU-2022:23018-1
Security update for conmon, libcontainers-common, libseccomp, podman
SUSE-SU-2022:23018-1
Security update for conmon, libcontainers-common, libseccomp, podman
ELSA-2022-7954
ELSA-2022-7954: podman security and bug fix update (MODERATE)
ROS-20230710-01
ΠΠ½ΠΎΠΆΠ΅ΡΡΠ²Π΅Π½Π½ΡΠ΅ ΡΡΠ·Π²ΠΈΠΌΠΎΡΡΠΈ podman
Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡΠ΅ΠΉ Π½Π° ΡΡΡΠ°Π½ΠΈΡΡ
Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡΡ | CVSS | EPSS | ΠΠΏΡΠ±Π»ΠΈΠΊΠΎΠ²Π°Π½ΠΎ | |
|---|---|---|---|---|
 | CVE-2021-4024 A flaw was found in podman. The `podman machine` function (used to create and manage Podman virtual machine containing a Podman process) spawns a `gvproxy` process on the host system. The `gvproxy` API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall, an attacker can potentially use the `gvproxy` API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the host's services by forwarding all ports to the VM. | CVSS3: 6.5 | 1% ΠΠΈΠ·ΠΊΠΈΠΉ | Π±ΠΎΠ»ΡΡΠ΅ 4 Π»Π΅Ρ Π½Π°Π·Π°Π΄ |
 | CVE-2021-4024 A flaw was found in podman. The `podman machine` function (used to create and manage Podman virtual machine containing a Podman process) spawns a `gvproxy` process on the host system. The `gvproxy` API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall, an attacker can potentially use the `gvproxy` API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the host's services by forwarding all ports to the VM. | CVSS3: 4.8 | 1% ΠΠΈΠ·ΠΊΠΈΠΉ | Π±ΠΎΠ»ΡΡΠ΅ 4 Π»Π΅Ρ Π½Π°Π·Π°Π΄ |
 | CVE-2021-4024 A flaw was found in podman. The `podman machine` function (used to create and manage Podman virtual machine containing a Podman process) spawns a `gvproxy` process on the host system. The `gvproxy` API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall, an attacker can potentially use the `gvproxy` API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the host's services by forwarding all ports to the VM. | CVSS3: 6.5 | 1% ΠΠΈΠ·ΠΊΠΈΠΉ | Π±ΠΎΠ»ΡΡΠ΅ 4 Π»Π΅Ρ Π½Π°Π·Π°Π΄ |
| CVE-2021-4024 A flaw was found in podman. The `podman machine` function (used to cre ... | CVSS3: 6.5 | 1% ΠΠΈΠ·ΠΊΠΈΠΉ | Π±ΠΎΠ»ΡΡΠ΅ 4 Π»Π΅Ρ Π½Π°Π·Π°Π΄ |
| GHSA-3cf2-x423-x582 Exposure of Sensitive Information to an Unauthorized Actor and Origin Validation Error in podman | CVSS3: 6.5 | 1% ΠΠΈΠ·ΠΊΠΈΠΉ | Π±ΠΎΠ»ΡΡΠ΅ 4 Π»Π΅Ρ Π½Π°Π·Π°Π΄ |
 | BDU:2023-03676 Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡΡ ΠΈΠ½ΡΡΡΡΠΌΠ΅Π½ΡΠ° ΡΠΏΡΠ°Π²Π»Π΅Π½ΠΈΡ Π²ΠΈΡΡΡΠ°Π»ΠΈΠ·Π°ΡΠΈΠ΅ΠΉ podman-machine ΠΏΡΠΎΠ³ΡΠ°ΠΌΠΌΠ½ΠΎΠ³ΠΎ ΡΡΠ΅Π΄ΡΡΠ²Π° ΡΠΏΡΠ°Π²Π»Π΅Π½ΠΈΡ ΠΈ Π·Π°ΠΏΡΡΠΊΠ° OCI-ΠΊΠΎΠ½ΡΠ΅ΠΉΠ½Π΅ΡΠΎΠ² Podman, ΠΏΠΎΠ·Π²ΠΎΠ»ΡΡΡΠ°Ρ Π½Π°ΡΡΡΠΈΡΠ΅Π»Ρ ΠΏΠΎΠ»ΡΡΠΈΡΡ Π½Π΅ΡΠ°Π½ΠΊΡΠΈΠΎΠ½ΠΈΡΠΎΠ²Π°Π½Π½ΡΠΉ Π΄ΠΎΡΡΡΠΏ ΠΊ Π·Π°ΡΠΈΡΠ°Π΅ΠΌΠΎΠΉ ΠΈΠ½ΡΠΎΡΠΌΠ°ΡΠΈΠΈ | CVSS3: 6.5 | 1% ΠΠΈΠ·ΠΊΠΈΠΉ | Π±ΠΎΠ»ΡΡΠ΅ 4 Π»Π΅Ρ Π½Π°Π·Π°Π΄ |
 | RLSA-2024:10289 Moderate: container-tools:rhel8 security update | Π±ΠΎΠ»ΡΡΠ΅ 1 Π³ΠΎΠ΄Π° Π½Π°Π·Π°Π΄ | ||
| ELSA-2024-10289 ELSA-2024-10289: container-tools:ol8 security update (MODERATE) | Π±ΠΎΠ»ΡΡΠ΅ 1 Π³ΠΎΠ΄Π° Π½Π°Π·Π°Π΄ | ||
 | SUSE-SU-2023:0326-1 Security update for podman | Π±ΠΎΠ»ΡΡΠ΅ 3 Π»Π΅Ρ Π½Π°Π·Π°Π΄ | ||
| SUSE-SU-2023:0187-1 Security update for podman | Π±ΠΎΠ»ΡΡΠ΅ 3 Π»Π΅Ρ Π½Π°Π·Π°Π΄ | ||
| openSUSE-SU-2022:23018-1 Security update for conmon, libcontainers-common, libseccomp, podman | Π±ΠΎΠ»ΡΡΠ΅ 4 Π»Π΅Ρ Π½Π°Π·Π°Π΄ | ||
| SUSE-SU-2022:23018-1 Security update for conmon, libcontainers-common, libseccomp, podman | Π±ΠΎΠ»ΡΡΠ΅ 4 Π»Π΅Ρ Π½Π°Π·Π°Π΄ | ||
| ELSA-2022-7954 ELSA-2022-7954: podman security and bug fix update (MODERATE) | Π±ΠΎΠ»ΡΡΠ΅ 3 Π»Π΅Ρ Π½Π°Π·Π°Π΄ | ||
 | ROS-20230710-01 ΠΠ½ΠΎΠΆΠ΅ΡΡΠ²Π΅Π½Π½ΡΠ΅ ΡΡΠ·Π²ΠΈΠΌΠΎΡΡΠΈ podman | CVSS3: 8.8 | ΠΏΠΎΡΡΠΈ 3 Π³ΠΎΠ΄Π° Π½Π°Π·Π°Π΄ |
Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡΠ΅ΠΉ Π½Π° ΡΡΡΠ°Π½ΠΈΡΡ