feat(checker): new checker request podman #5468
Description
New Checker Request: podman
Description
Podman is a daemonless container engine for developing, managing, and running OCI Containers. It's commonly used in AlmaLinux and other RHEL-based distributions as an alternative to Docker.
Why This Checker is Needed
- Podman is a critical security component (container runtime)
- It's included in AlmaLinux base repositories
- Container engines often have security vulnerabilities
- Would improve AlmaLinux scanning coverage (related to Add new checker requests for Alma Linux packages not already covered #2761)
Known CVEs
Based on NVD search, podman has several CVEs including:
- CVE-2022-2989: Possible information disclosure and modification
- CVE-2022-1227: Privilege escalation in podman
- CVE-2021-4024: Path traversal vulnerability
- CVE-2021-3602: Security bypass vulnerability
Package Information
- Package name: podman
- AlmaLinux package: Available in AppStream repository
- Upstream: https://github.com/containers/podman
- Version pattern: X.Y.Z (e.g., 4.4.1, 4.6.1)
Potential Signatures
- Binary name:
/usr/bin/podman - Version strings: "podman version X.Y.Z"
- Library dependencies: containers/image, containers/storage
Test Sources
- AlmaLinux 9: podman-4.4.1-*.rpm
- Fedora/RHEL packages
- GitHub releases
I'm working on improving AlmaLinux support (#2761) and would be happy to help test this checker.