Home

CVE-2021-4024

Description

A flaw was found in podman. The podman machine function (used to create and manage Podman virtual machine containing a Podman process) spawns a gvproxy process on the host system. The gvproxy API is accessible on port 7777 on all IP addresses on the host. If that port is open on the hosts firewall, an attacker can potentially use the gvproxy API to forward ports on the host to ports in the VM, making private services on the VM accessible to the network. This issue could be also used to interrupt the hosts services by forwarding all ports to the VM.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
EPSS Score
Exploitation Probability
0.095

Associated Vulnerability

VulnerabilityOS Platform
SUSE-SU-2022:23018-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libseccomp2-2.5.3-150300.10.5.1.x86_64.rpmLinux
SUSE-SU-2022:23018-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libseccomp-devel-2.5.3-150300.10.5.1.x86_64.rpmLinux
SUSE-SU-2022:23018-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libcontainers-common-20210626-150300.8.3.1.noarch.rpmLinux
SUSE-SU-2022:23018-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libseccomp2-debuginfo-2.5.3-150300.10.5.1.x86_64.rpmLinux
SUSE-SU-2022:23018-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libseccomp-debugsource-2.5.3-150300.10.5.1.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update udica-0.2.6-21.module+el8.10.0+22417+2fb00970.noarch.rpmLinux
(RHSA-2024:10289)Moderate: security update toolbox-tests-0.0.99.5-2.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update toolbox-0.0.99.5-2.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update slirp4netns-1.2.3-1.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update skopeo-tests-1.14.5-3.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update skopeo-1.14.5-3.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update runc-1.1.12-5.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update python3-podman-4.9.0-3.module+el8.10.0+22417+2fb00970.noarch.rpmLinux
(RHSA-2024:10289)Moderate: security update python3-criu-3.18-5.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update podman-tests-4.9.4-18.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update podman-remote-4.9.4-18.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update podman-plugins-4.9.4-18.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update podman-gvproxy-4.9.4-18.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update podman-docker-4.9.4-18.module+el8.10.0+22417+2fb00970.noarch.rpmLinux
(RHSA-2024:10289)Moderate: security update podman-catatonit-4.9.4-18.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update podman-4.9.4-18.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update netavark-1.10.3-1.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update libslirp-devel-4.4.0-2.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update libslirp-4.4.0-2.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update fuse-overlayfs-1.13-1.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update crun-1.14.3-2.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update criu-libs-3.18-5.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update criu-devel-3.18-5.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update criu-3.18-5.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update crit-3.18-5.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update containers-common-1-82.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update containernetworking-plugins-1.4.0-5.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update container-selinux-2.229.0-2.module+el8.10.0+22417+2fb00970.noarch.rpmLinux
(RHSA-2024:10289)Moderate: security update conmon-2.1.10-1.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update cockpit-podman-84.1-1.module+el8.10.0+22417+2fb00970.noarch.rpmLinux
(RHSA-2024:10289)Moderate: security update buildah-tests-1.33.11-1.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update buildah-1.33.11-1.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
(RHSA-2024:10289)Moderate: security update aardvark-dns-1.10.1-2.module+el8.10.0+22417+2fb00970.x86_64.rpmLinux
Netavark update (ELSA-2024-10289) netavark-1.10.3-1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Libslirp update (ELSA-2024-10289) libslirp-4.4.0-2.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Fuse-overlayfs update (ELSA-2024-10289) fuse-overlayfs-1.13-1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Crun update (ELSA-2024-10289) crun-1.14.3-2.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Criu-libs update (ELSA-2024-10289) criu-libs-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Criu-devel update (ELSA-2024-10289) criu-devel-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Criu update (ELSA-2024-10289) criu-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Crit update (ELSA-2024-10289) crit-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Containers-common update (ELSA-2024-10289) containers-common-1-82.0.1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Containernetworking-plugins update (ELSA-2024-10289) containernetworking-plugins-1.4.0-5.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Container-selinux update (ELSA-2024-10289) container-selinux-2.229.0-2.module+el8.10.0+90449+0b7c8529.noarch.rpmLinux
Conmon update (ELSA-2024-10289) conmon-2.1.10-1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Cockpit-podman update (ELSA-2024-10289) cockpit-podman-84.1-1.module+el8.10.0+90449+0b7c8529.noarch.rpmLinux
Buildah-tests update (ELSA-2024-10289) buildah-tests-1.33.11-1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Aardvark-dns update (ELSA-2024-10289) aardvark-dns-1.10.1-2.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Libslirp-devel update (ELSA-2024-10289) libslirp-devel-4.4.0-2.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Oci-seccomp-bpf-hook update (ELSA-2024-10289) oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Podman update (ELSA-2024-10289) podman-4.9.4-18.0.1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Podman-catatonit update (ELSA-2024-10289) podman-catatonit-4.9.4-18.0.1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Podman-docker update (ELSA-2024-10289) podman-docker-4.9.4-18.0.1.module+el8.10.0+90449+0b7c8529.noarch.rpmLinux
Podman-gvproxy update (ELSA-2024-10289) podman-gvproxy-4.9.4-18.0.1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Podman-plugins update (ELSA-2024-10289) podman-plugins-4.9.4-18.0.1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Podman-remote update (ELSA-2024-10289) podman-remote-4.9.4-18.0.1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Podman-tests update (ELSA-2024-10289) podman-tests-4.9.4-18.0.1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Python3-criu update (ELSA-2024-10289) python3-criu-3.18-5.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Python3-podman update (ELSA-2024-10289) python3-podman-4.9.0-3.module+el8.10.0+90449+0b7c8529.noarch.rpmLinux
Runc update (ELSA-2024-10289) runc-1.1.12-5.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Skopeo update (ELSA-2024-10289) skopeo-1.14.5-3.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Skopeo-tests update (ELSA-2024-10289) skopeo-tests-1.14.5-3.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Slirp4netns update (ELSA-2024-10289) slirp4netns-1.2.3-1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
Udica update (ELSA-2024-10289) udica-0.2.6-21.module+el8.10.0+90449+0b7c8529.noarch.rpmLinux
Buildah update (ELSA-2024-10289) buildah-1.33.11-1.module+el8.10.0+90449+0b7c8529.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) udica-0.2.6-21.module+el8.10.0+1815+5fe7415e.noarch.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) toolbox-tests-0.0.99.5-2.module+el8.10.0+1815+5fe7415e.rocky.0.2.rocky.0.2.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) toolbox-0.0.99.5-2.module+el8.10.0+1815+5fe7415e.rocky.0.2.rocky.0.2.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) slirp4netns-1.2.3-1.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) skopeo-tests-1.14.5-3.module+el8.10.0+1843+6892ab28.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) skopeo-1.14.5-3.module+el8.10.0+1843+6892ab28.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) runc-1.1.12-5.module+el8.10.0+1874+ce489889.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) python3-podman-4.9.0-3.module+el8.10.0+1896+b18fa106.noarch.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) python3-criu-3.18-5.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) podman-tests-4.9.4-18.module+el8.10.0+1896+b18fa106.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) podman-remote-4.9.4-18.module+el8.10.0+1896+b18fa106.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) podman-plugins-4.9.4-18.module+el8.10.0+1896+b18fa106.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) podman-gvproxy-4.9.4-18.module+el8.10.0+1896+b18fa106.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) podman-docker-4.9.4-18.module+el8.10.0+1896+b18fa106.noarch.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) podman-catatonit-4.9.4-18.module+el8.10.0+1896+b18fa106.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) podman-4.9.4-18.module+el8.10.0+1896+b18fa106.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) netavark-1.10.3-1.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) libslirp-devel-4.4.0-2.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) libslirp-4.4.0-2.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) fuse-overlayfs-1.13-1.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) crun-1.14.3-2.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) criu-libs-3.18-5.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) criu-devel-3.18-5.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) criu-3.18-5.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) crit-3.18-5.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) containers-common-1-82.module+el8.10.0+1843+6892ab28.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) containernetworking-plugins-1.4.0-5.module+el8.10.0+1843+6892ab28.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) container-selinux-2.229.0-2.module+el8.10.0+1815+5fe7415e.noarch.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) conmon-2.1.10-1.module+el8.10.0+1815+5fe7415e.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) cockpit-podman-84.1-1.module+el8.10.0+1815+5fe7415e.noarch.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) buildah-tests-1.33.11-1.module+el8.10.0+1896+b18fa106.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) buildah-1.33.11-1.module+el8.10.0+1896+b18fa106.x86_64.rpmLinux
container-tools:rhel8 security update (RLSA-2024:10289) aardvark-dns-1.10.1-2.module+el8.10.0+1874+ce489889.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234