[ALPINE:CVE-2021-4024] podman vulnerability
Severity
Medium
Affected Packages
36
Fixed Packages
36
CVEs
1
[From CVE-2021-4024] A flaw was found in podman. The podman machine
function (used to create and manage Podman virtual machine containing a Podman process) spawns a gvproxy
process on the host system. The gvproxy
API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall, an attacker can potentially use the gvproxy
API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the host's services by forwarding all ports to the VM.
- ID
- ALPINE:CVE-2021-4024
- Severity
- medium
- URL
- https://security.alpinelinux.org/vuln/CVE-2021-4024
- Published
-
2021-12-23T20:15:12
(2 years ago) - Modified
-
2021-12-23T20:15:12
(2 years ago) - Rights
- Alpine Linux Security Team
- Other Advisories
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Fixed | pkg:apk/alpine/podman?arch=x86_64&distro=alpine-edge | alpine | podman | = 3.4.4-r0 | alpine-edge | x86_64 | |
Affected | pkg:apk/alpine/podman?arch=x86_64&distro=alpine-edge | alpine | podman | < 3.4.4-r0 | alpine-edge | x86_64 | |
Fixed | pkg:apk/alpine/podman?arch=x86_64&distro=alpine-3.18 | alpine | podman | = 3.4.4-r0 | alpine-3.18 | x86_64 | |
Affected | pkg:apk/alpine/podman?arch=x86_64&distro=alpine-3.18 | alpine | podman | < 3.4.4-r0 | alpine-3.18 | x86_64 | |
Fixed | pkg:apk/alpine/podman?arch=x86_64&distro=alpine-3.17 | alpine | podman | = 3.4.4-r0 | alpine-3.17 | x86_64 | |
Affected | pkg:apk/alpine/podman?arch=x86_64&distro=alpine-3.17 | alpine | podman | < 3.4.4-r0 | alpine-3.17 | x86_64 | |
Fixed | pkg:apk/alpine/podman?arch=x86_64&distro=alpine-3.16 | alpine | podman | = 3.4.4-r0 | alpine-3.16 | x86_64 | |
Affected | pkg:apk/alpine/podman?arch=x86_64&distro=alpine-3.16 | alpine | podman | < 3.4.4-r0 | alpine-3.16 | x86_64 | |
Fixed | pkg:apk/alpine/podman?arch=x86_64&distro=alpine-3.15 | alpine | podman | = 3.4.4-r0 | alpine-3.15 | x86_64 | |
Affected | pkg:apk/alpine/podman?arch=x86_64&distro=alpine-3.15 | alpine | podman | < 3.4.4-r0 | alpine-3.15 | x86_64 | |
Fixed | pkg:apk/alpine/podman?arch=x86&distro=alpine-edge | alpine | podman | = 3.4.4-r0 | alpine-edge | x86 | |
Affected | pkg:apk/alpine/podman?arch=x86&distro=alpine-edge | alpine | podman | < 3.4.4-r0 | alpine-edge | x86 | |
Fixed | pkg:apk/alpine/podman?arch=x86&distro=alpine-3.18 | alpine | podman | = 3.4.4-r0 | alpine-3.18 | x86 | |
Affected | pkg:apk/alpine/podman?arch=x86&distro=alpine-3.18 | alpine | podman | < 3.4.4-r0 | alpine-3.18 | x86 | |
Fixed | pkg:apk/alpine/podman?arch=x86&distro=alpine-3.17 | alpine | podman | = 3.4.4-r0 | alpine-3.17 | x86 | |
Affected | pkg:apk/alpine/podman?arch=x86&distro=alpine-3.17 | alpine | podman | < 3.4.4-r0 | alpine-3.17 | x86 | |
Fixed | pkg:apk/alpine/podman?arch=x86&distro=alpine-3.16 | alpine | podman | = 3.4.4-r0 | alpine-3.16 | x86 | |
Affected | pkg:apk/alpine/podman?arch=x86&distro=alpine-3.16 | alpine | podman | < 3.4.4-r0 | alpine-3.16 | x86 | |
Fixed | pkg:apk/alpine/podman?arch=x86&distro=alpine-3.15 | alpine | podman | = 3.4.4-r0 | alpine-3.15 | x86 | |
Affected | pkg:apk/alpine/podman?arch=x86&distro=alpine-3.15 | alpine | podman | < 3.4.4-r0 | alpine-3.15 | x86 | |
Fixed | pkg:apk/alpine/podman?arch=s390x&distro=alpine-edge | alpine | podman | = 3.4.4-r0 | alpine-edge | s390x | |
Affected | pkg:apk/alpine/podman?arch=s390x&distro=alpine-edge | alpine | podman | < 3.4.4-r0 | alpine-edge | s390x | |
Fixed | pkg:apk/alpine/podman?arch=s390x&distro=alpine-3.18 | alpine | podman | = 3.4.4-r0 | alpine-3.18 | s390x | |
Affected | pkg:apk/alpine/podman?arch=s390x&distro=alpine-3.18 | alpine | podman | < 3.4.4-r0 | alpine-3.18 | s390x | |
Fixed | pkg:apk/alpine/podman?arch=s390x&distro=alpine-3.17 | alpine | podman | = 3.4.4-r0 | alpine-3.17 | s390x | |
Affected | pkg:apk/alpine/podman?arch=s390x&distro=alpine-3.17 | alpine | podman | < 3.4.4-r0 | alpine-3.17 | s390x | |
Fixed | pkg:apk/alpine/podman?arch=s390x&distro=alpine-3.16 | alpine | podman | = 3.4.4-r0 | alpine-3.16 | s390x | |
Affected | pkg:apk/alpine/podman?arch=s390x&distro=alpine-3.16 | alpine | podman | < 3.4.4-r0 | alpine-3.16 | s390x | |
Fixed | pkg:apk/alpine/podman?arch=s390x&distro=alpine-3.15 | alpine | podman | = 3.4.4-r0 | alpine-3.15 | s390x | |
Affected | pkg:apk/alpine/podman?arch=s390x&distro=alpine-3.15 | alpine | podman | < 3.4.4-r0 | alpine-3.15 | s390x | |
Fixed | pkg:apk/alpine/podman?arch=riscv64&distro=alpine-edge | alpine | podman | = 3.4.4-r0 | alpine-edge | riscv64 | |
Affected | pkg:apk/alpine/podman?arch=riscv64&distro=alpine-edge | alpine | podman | < 3.4.4-r0 | alpine-edge | riscv64 | |
Fixed | pkg:apk/alpine/podman?arch=ppc64le&distro=alpine-edge | alpine | podman | = 3.4.4-r0 | alpine-edge | ppc64le | |
Affected | pkg:apk/alpine/podman?arch=ppc64le&distro=alpine-edge | alpine | podman | < 3.4.4-r0 | alpine-edge | ppc64le | |
Fixed | pkg:apk/alpine/podman?arch=ppc64le&distro=alpine-3.18 | alpine | podman | = 3.4.4-r0 | alpine-3.18 | ppc64le | |
Affected | pkg:apk/alpine/podman?arch=ppc64le&distro=alpine-3.18 | alpine | podman | < 3.4.4-r0 | alpine-3.18 | ppc64le | |
Fixed | pkg:apk/alpine/podman?arch=ppc64le&distro=alpine-3.17 | alpine | podman | = 3.4.4-r0 | alpine-3.17 | ppc64le | |
Affected | pkg:apk/alpine/podman?arch=ppc64le&distro=alpine-3.17 | alpine | podman | < 3.4.4-r0 | alpine-3.17 | ppc64le | |
Fixed | pkg:apk/alpine/podman?arch=ppc64le&distro=alpine-3.16 | alpine | podman | = 3.4.4-r0 | alpine-3.16 | ppc64le | |
Affected | pkg:apk/alpine/podman?arch=ppc64le&distro=alpine-3.16 | alpine | podman | < 3.4.4-r0 | alpine-3.16 | ppc64le | |
Fixed | pkg:apk/alpine/podman?arch=ppc64le&distro=alpine-3.15 | alpine | podman | = 3.4.4-r0 | alpine-3.15 | ppc64le | |
Affected | pkg:apk/alpine/podman?arch=ppc64le&distro=alpine-3.15 | alpine | podman | < 3.4.4-r0 | alpine-3.15 | ppc64le | |
Fixed | pkg:apk/alpine/podman?arch=armv7&distro=alpine-edge | alpine | podman | = 3.4.4-r0 | alpine-edge | armv7 | |
Affected | pkg:apk/alpine/podman?arch=armv7&distro=alpine-edge | alpine | podman | < 3.4.4-r0 | alpine-edge | armv7 | |
Fixed | pkg:apk/alpine/podman?arch=armv7&distro=alpine-3.18 | alpine | podman | = 3.4.4-r0 | alpine-3.18 | armv7 | |
Affected | pkg:apk/alpine/podman?arch=armv7&distro=alpine-3.18 | alpine | podman | < 3.4.4-r0 | alpine-3.18 | armv7 | |
Fixed | pkg:apk/alpine/podman?arch=armv7&distro=alpine-3.17 | alpine | podman | = 3.4.4-r0 | alpine-3.17 | armv7 | |
Affected | pkg:apk/alpine/podman?arch=armv7&distro=alpine-3.17 | alpine | podman | < 3.4.4-r0 | alpine-3.17 | armv7 | |
Fixed | pkg:apk/alpine/podman?arch=armv7&distro=alpine-3.16 | alpine | podman | = 3.4.4-r0 | alpine-3.16 | armv7 | |
Affected | pkg:apk/alpine/podman?arch=armv7&distro=alpine-3.16 | alpine | podman | < 3.4.4-r0 | alpine-3.16 | armv7 | |
Fixed | pkg:apk/alpine/podman?arch=armv7&distro=alpine-3.15 | alpine | podman | = 3.4.4-r0 | alpine-3.15 | armv7 | |
Affected | pkg:apk/alpine/podman?arch=armv7&distro=alpine-3.15 | alpine | podman | < 3.4.4-r0 | alpine-3.15 | armv7 | |
Fixed | pkg:apk/alpine/podman?arch=armhf&distro=alpine-edge | alpine | podman | = 3.4.4-r0 | alpine-edge | armhf | |
Affected | pkg:apk/alpine/podman?arch=armhf&distro=alpine-edge | alpine | podman | < 3.4.4-r0 | alpine-edge | armhf | |
Fixed | pkg:apk/alpine/podman?arch=armhf&distro=alpine-3.18 | alpine | podman | = 3.4.4-r0 | alpine-3.18 | armhf | |
Affected | pkg:apk/alpine/podman?arch=armhf&distro=alpine-3.18 | alpine | podman | < 3.4.4-r0 | alpine-3.18 | armhf | |
Fixed | pkg:apk/alpine/podman?arch=armhf&distro=alpine-3.17 | alpine | podman | = 3.4.4-r0 | alpine-3.17 | armhf | |
Affected | pkg:apk/alpine/podman?arch=armhf&distro=alpine-3.17 | alpine | podman | < 3.4.4-r0 | alpine-3.17 | armhf | |
Fixed | pkg:apk/alpine/podman?arch=armhf&distro=alpine-3.16 | alpine | podman | = 3.4.4-r0 | alpine-3.16 | armhf | |
Affected | pkg:apk/alpine/podman?arch=armhf&distro=alpine-3.16 | alpine | podman | < 3.4.4-r0 | alpine-3.16 | armhf | |
Fixed | pkg:apk/alpine/podman?arch=armhf&distro=alpine-3.15 | alpine | podman | = 3.4.4-r0 | alpine-3.15 | armhf | |
Affected | pkg:apk/alpine/podman?arch=armhf&distro=alpine-3.15 | alpine | podman | < 3.4.4-r0 | alpine-3.15 | armhf | |
Fixed | pkg:apk/alpine/podman?arch=aarch64&distro=alpine-edge | alpine | podman | = 3.4.4-r0 | alpine-edge | aarch64 | |
Affected | pkg:apk/alpine/podman?arch=aarch64&distro=alpine-edge | alpine | podman | < 3.4.4-r0 | alpine-edge | aarch64 | |
Fixed | pkg:apk/alpine/podman?arch=aarch64&distro=alpine-3.18 | alpine | podman | = 3.4.4-r0 | alpine-3.18 | aarch64 | |
Affected | pkg:apk/alpine/podman?arch=aarch64&distro=alpine-3.18 | alpine | podman | < 3.4.4-r0 | alpine-3.18 | aarch64 | |
Fixed | pkg:apk/alpine/podman?arch=aarch64&distro=alpine-3.17 | alpine | podman | = 3.4.4-r0 | alpine-3.17 | aarch64 | |
Affected | pkg:apk/alpine/podman?arch=aarch64&distro=alpine-3.17 | alpine | podman | < 3.4.4-r0 | alpine-3.17 | aarch64 | |
Fixed | pkg:apk/alpine/podman?arch=aarch64&distro=alpine-3.16 | alpine | podman | = 3.4.4-r0 | alpine-3.16 | aarch64 | |
Affected | pkg:apk/alpine/podman?arch=aarch64&distro=alpine-3.16 | alpine | podman | < 3.4.4-r0 | alpine-3.16 | aarch64 | |
Fixed | pkg:apk/alpine/podman?arch=aarch64&distro=alpine-3.15 | alpine | podman | = 3.4.4-r0 | alpine-3.15 | aarch64 | |
Affected | pkg:apk/alpine/podman?arch=aarch64&distro=alpine-3.15 | alpine | podman | < 3.4.4-r0 | alpine-3.15 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |