Описание
ELSA-2025-10549: podman security update (IMPORTANT)
[6:5.4.0-12.0.1]
- Add devices on container startup, not on creation
- overlay: Put should ignore ENINVAL for Unmount [Orabug: 36234694]
- Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404]
[6:5.4.0-12]
- update to the latest content of https://github.com/containers/podman/tree/v5.4-rhel (https://github.com/containers/podman/commit/9811294)
- fixes 'CVE-2025-6032 podman: podman missing TLS verification [rhel-9.6.z]'
- Resolves: RHEL-96708
Обновленные пакеты
Oracle Linux 10
Oracle Linux aarch64
podman
5.4.0-12.0.1.el10_0
podman-docker
5.4.0-12.0.1.el10_0
podman-remote
5.4.0-12.0.1.el10_0
podman-tests
5.4.0-12.0.1.el10_0
Oracle Linux x86_64
podman
5.4.0-12.0.1.el10_0
podman-docker
5.4.0-12.0.1.el10_0
podman-remote
5.4.0-12.0.1.el10_0
podman-tests
5.4.0-12.0.1.el10_0
Связанные CVE
Связанные уязвимости
A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.
A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.
A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.
A flaw was found in Podman. The podman machine init command fails to v ...
Podman Improper Certificate Validation; machine missing TLS verification