podman

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Tool and library for running OCI-based containers in pods
Version 3.3.1-1 [community]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1517 2.2.1-2 3.0.0-1 Medium Fixed
AVG-1233 2.0.6-1 2.1.0-1 High Fixed
Issue Group Severity Remote Type Description
CVE-2021-20199 AVG-1517 Medium Yes Insufficient validation
Rootless containers run with Podman from version 1.8.0 up to 2.2.1 receive all traffic with a source IP address of 127.0.0.1 (including from remote hosts)....
CVE-2020-14370 AVG-1233 High Yes Information disclosure
A flaw was discovered in Podman before upstream version 2.0.5. When using the deprecated Varlink API or the Docker-compatible REST API, if multiple...

Advisories

Date Advisory Group Severity Type
26 Sep 2020 ASA-202009-11 AVG-1233 High information disclosure