CVE-2021-4024 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	Yes
Type	Information disclosure
Description	A security issue was found in Podman before version 3.4.3. The "podman machine" function (used to create and manage Podman virtual machine containing a Podman process) spawns a "gvproxy" process on the host system. The "gvproxy" API is accessible on port 7777 on all IP addresses on the host. If that port is open on the host's firewall, an attacker can potentially use "gvproxy" API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the host's services by forwarding all ports to the VM.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2591	podman	3.4.2-1	3.4.4-1	Medium	Fixed

References
https://bugzilla.redhat.com/show_bug.cgi?id=2026675 https://twitter.com/discordianfish/status/1463462371675066371 https://github.com/containers/podman/pull/12283 https://github.com/containers/podman/pull/12497 https://github.com/containers/podman/commit/57c5e2246efeaf2fef820a482241f1cc43960c7a

References

https://bugzilla.redhat.com/show_bug.cgi?id=2026675
https://twitter.com/discordianfish/status/1463462371675066371
https://github.com/containers/podman/pull/12283
https://github.com/containers/podman/pull/12497
https://github.com/containers/podman/commit/57c5e2246efeaf2fef820a482241f1cc43960c7a