Описание
ELSA-2025-10551: container-tools:rhel8 security update (IMPORTANT)
aardvark-dns buildah cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu crun fuse-overlayfs libslirp netavark oci-seccomp-bpf-hook podman [4.9.4-22.0.1]
- Fixes issue of container created in cgroupv2 not start in cgroupv1 [Orabug: 36136813]
- Fixes container memory limit not set after host is rebooted with cgroupv2 [Orabug: 36136802]
- Fixes issue of podman execvp error while using podmansh [Orabug: 36756665]
[4:4.9.4-22]
- update to the latest content of https://github.com/containers/podman/tree/v4.9-rhel (https://github.com/containers/podman/commit/6cc8283)
- fixes 'CVE-2025-6032 container-tools:rhel8/podman: podman missing TLS verification [rhel-8.10.z]'
- Resolves: RHEL-96702
[4:4.9.4-21]
- update to the latest content of https://github.com/containers/podman/tree/v4.9-rhel (https://github.com/containers/podman/commit/97e91b5)
- fixes 'Terminate healthcheck command upon reaching timeout. [rhel-8.10.z]'
- Resolves: RHEL-96914
python-podman runc skopeo slirp4netns udica
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module container-tools:ol8 is enabled
aardvark-dns
1.10.1-2.module+el8.10.0+90626+f483dbeb
buildah
1.33.12-2.module+el8.10.0+90626+f483dbeb
buildah-tests
1.33.12-2.module+el8.10.0+90626+f483dbeb
cockpit-podman
84.1-1.module+el8.10.0+90626+f483dbeb
conmon
2.1.10-1.module+el8.10.0+90626+f483dbeb
container-selinux
2.229.0-2.module+el8.10.0+90626+f483dbeb
containernetworking-plugins
1.4.0-6.module+el8.10.0+90626+f483dbeb
containers-common
1-82.0.1.module+el8.10.0+90626+f483dbeb
crit
3.18-5.module+el8.10.0+90626+f483dbeb
criu
3.18-5.module+el8.10.0+90626+f483dbeb
criu-devel
3.18-5.module+el8.10.0+90626+f483dbeb
criu-libs
3.18-5.module+el8.10.0+90626+f483dbeb
crun
1.14.3-2.module+el8.10.0+90626+f483dbeb
fuse-overlayfs
1.13-1.module+el8.10.0+90626+f483dbeb
libslirp
4.4.0-2.module+el8.10.0+90626+f483dbeb
libslirp-devel
4.4.0-2.module+el8.10.0+90626+f483dbeb
netavark
1.10.3-1.module+el8.10.0+90626+f483dbeb
oci-seccomp-bpf-hook
1.2.10-1.module+el8.10.0+90626+f483dbeb
podman
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-catatonit
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-docker
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-gvproxy
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-plugins
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-remote
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-tests
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
python3-criu
3.18-5.module+el8.10.0+90626+f483dbeb
python3-podman
4.9.0-3.module+el8.10.0+90626+f483dbeb
runc
1.1.12-6.module+el8.10.0+90626+f483dbeb
skopeo
1.14.5-4.module+el8.10.0+90626+f483dbeb
skopeo-tests
1.14.5-4.module+el8.10.0+90626+f483dbeb
slirp4netns
1.2.3-1.module+el8.10.0+90626+f483dbeb
udica
0.2.6-21.module+el8.10.0+90626+f483dbeb
Oracle Linux x86_64
Module container-tools:ol8 is enabled
aardvark-dns
1.10.1-2.module+el8.10.0+90626+f483dbeb
buildah
1.33.12-2.module+el8.10.0+90626+f483dbeb
buildah-tests
1.33.12-2.module+el8.10.0+90626+f483dbeb
cockpit-podman
84.1-1.module+el8.10.0+90626+f483dbeb
conmon
2.1.10-1.module+el8.10.0+90626+f483dbeb
container-selinux
2.229.0-2.module+el8.10.0+90626+f483dbeb
containernetworking-plugins
1.4.0-6.module+el8.10.0+90626+f483dbeb
containers-common
1-82.0.1.module+el8.10.0+90626+f483dbeb
crit
3.18-5.module+el8.10.0+90626+f483dbeb
criu
3.18-5.module+el8.10.0+90626+f483dbeb
criu-devel
3.18-5.module+el8.10.0+90626+f483dbeb
criu-libs
3.18-5.module+el8.10.0+90626+f483dbeb
crun
1.14.3-2.module+el8.10.0+90626+f483dbeb
fuse-overlayfs
1.13-1.module+el8.10.0+90626+f483dbeb
libslirp
4.4.0-2.module+el8.10.0+90626+f483dbeb
libslirp-devel
4.4.0-2.module+el8.10.0+90626+f483dbeb
netavark
1.10.3-1.module+el8.10.0+90626+f483dbeb
oci-seccomp-bpf-hook
1.2.10-1.module+el8.10.0+90626+f483dbeb
podman
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-catatonit
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-docker
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-gvproxy
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-plugins
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-remote
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
podman-tests
4.9.4-22.0.1.module+el8.10.0+90626+f483dbeb
python3-criu
3.18-5.module+el8.10.0+90626+f483dbeb
python3-podman
4.9.0-3.module+el8.10.0+90626+f483dbeb
runc
1.1.12-6.module+el8.10.0+90626+f483dbeb
skopeo
1.14.5-4.module+el8.10.0+90626+f483dbeb
skopeo-tests
1.14.5-4.module+el8.10.0+90626+f483dbeb
slirp4netns
1.2.3-1.module+el8.10.0+90626+f483dbeb
udica
0.2.6-21.module+el8.10.0+90626+f483dbeb
Связанные CVE
Связанные уязвимости
A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.
A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.
A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.
A flaw was found in Podman. The podman machine init command fails to v ...
Podman Improper Certificate Validation; machine missing TLS verification