podman is vulnerable to information disclosure. The vulnerability exists through environment variables leak between containers when started via Varlink or Docker-compatible REST API.
access.redhat.com/errata/RHSA-2020:4297
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=1874268
lists.fedoraproject.org/archives/list/[email protected]/message/G6BPCZX4ASKNONL3MSCK564IVXNYSKLP/
lists.fedoraproject.org/archives/list/[email protected]/message/Y74V7HGQBNLT6XECCSNZNFZIB7G7XSAR/
lists.fedoraproject.org/archives/list/[email protected]/message/Z4Y2FSGQWP4AFT5AZ6UBN6RKHVXUBRFV/