On 2/2/21 18:19, Matt Heon wrote:

On 2021-02-02 23:49, Erik Sjölund wrote:

I was reading Twitter and saw a link to a new CVE:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20199
It's related to Podman. I just wanted to mention it if you didn't know.
(Maybe this old news?)
Regards,
Erik Sjölund

This issue will be addressed in the upcoming Podman 3.0 release. In
the mean time, Podman 2.1.0 and up can work around the issue by
forcing the use of the slirp4netns port forwarder by using the
`--net=slirp4netns:port_handler=slirp4netns` option to `podman run`
and `podman create`.

Thanks,
Matt Heon

_______________________________________________

Podman mailing list -- podman@lists.podman.io
To unsubscribe send an email to podman-leave@lists.podman.io
_______________________________________________
Podman mailing list -- podman@lists.podman.io
To unsubscribe send an email to podman-leave@lists.podman.io

Or just don't use images that trust connections coming from localhost.