ELSA-2026-0753

Опубликовано: 19 янв. 2026

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2026-0753: container-tools:rhel8 security update (IMPORTANT)

aardvark-dns [2:1.10.1-2]

build off the RHEL maintenance branch
Resolves: RHEL-59129

buildah [2:1.33.14-1]

update to the latest content of https://github.com/containers/buildah/tree/release-1.33 (https://github.com/containers/buildah/commit/a7f8179)
fixes 'CVE-2025-47913 container-tools:rhel8/buildah: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS [rhel-8.10.z]'
Resolves: RHEL-130974

cockpit-podman [84.1-1]

update to https://github.com/cockpit-project/cockpit-podman/releases/tag/84.1
Related: Jira:RHEL-25557

conmon [3:2.1.10-1]

update to https://github.com/containers/conmon/releases/tag/v2.1.10
Related: Jira:RHEL-2110

containernetworking-plugins [1:1.4.0-6]

rebuild for CVE-2025-22871
Resolves: RHEL-89244

containers-common [1-82.0.1]

Updated removed references [Orabug: 33473101] (Alex Burmashev)
Adjust registries.conf (Nikita Gerasimov)
remove references to RedHat registry (Nikita Gerasimov)

container-selinux [2:2.229.0-2]

remove watch statements properly for RHEL8 and lower
Related: Jira:RHEL-2110

criu [3.18-5]

rebuild to preserve upgrade path
Related: RHEL-32671

crun [1.14.3-2]

remove BR libgcrypt-devel, no longer needed
Related: Jira:RHEL-2110

fuse-overlayfs [1.13-1]

update to https://github.com/containers/fuse-overlayfs/releases/tag/v1.13
Related: Jira:RHEL-2110

libslirp [4.4.0-2]

rebuild to preserve upgrade path 8.9 -> 8.10
Related: RHEL-32671

netavark [2:1.10.3-1]

update to https://github.com/containers/netavark/releases/tag/v1.10.3
Related: Jira:RHEL-2110

oci-seccomp-bpf-hook [1.2.10-1]

update to https://github.com/containers/oci-seccomp-bpf-hook/releases/tag/v1.2.10
Related: Jira:RHEL-2110

podman [4.9.4-27.0.1]

Fixes issue of container created in cgroupv2 not start in cgroupv1 [Orabug: 36136813]
Fixes container memory limit not set after host is rebooted with cgroupv2 [Orabug: 36136802]
Fixes issue of podman execvp error while using podmansh [Orabug: 36756665]

python-podman [4.9.0-3]

sync with release-4.9 branch
Resolves: RHEL-31069

runc [4:1.2.9-2]

update to https://github.com/opencontainers/runc/releases/tag/v1.2.9
Resolves: RHEL-132818

skopeo [2:1.14.5-5]

rebuild for CVE-2025-58183
Resolves: RHEL-125659

slirp4netns [1.2.3-1]

update to https://github.com/rootless-containers/slirp4netns/releases/tag/v1.2.3
Related: Jira:RHEL-2110

udica [0.2.6-21]

bump release to preserve update path
Resolves: RHEL-32671

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

Module container-tools:ol8 is enabled

aardvark-dns

1.10.1-2.module+el8.10.0+90770+75f7d03c

buildah

1.33.14-1.module+el8.10.0+90770+75f7d03c

buildah-tests

1.33.14-1.module+el8.10.0+90770+75f7d03c

cockpit-podman

84.1-1.module+el8.10.0+90770+75f7d03c

conmon

2.1.10-1.module+el8.10.0+90770+75f7d03c

container-selinux

2.229.0-2.module+el8.10.0+90770+75f7d03c

containernetworking-plugins

1.4.0-6.module+el8.10.0+90770+75f7d03c

containers-common

1-82.0.1.module+el8.10.0+90770+75f7d03c

crit

3.18-5.module+el8.10.0+90770+75f7d03c

criu

3.18-5.module+el8.10.0+90770+75f7d03c

criu-devel

3.18-5.module+el8.10.0+90770+75f7d03c

criu-libs

3.18-5.module+el8.10.0+90770+75f7d03c

crun

1.14.3-2.module+el8.10.0+90770+75f7d03c

fuse-overlayfs

1.13-1.module+el8.10.0+90770+75f7d03c

libslirp

4.4.0-2.module+el8.10.0+90770+75f7d03c

libslirp-devel

4.4.0-2.module+el8.10.0+90770+75f7d03c

netavark

1.10.3-1.module+el8.10.0+90770+75f7d03c

oci-seccomp-bpf-hook

1.2.10-1.module+el8.10.0+90770+75f7d03c

podman

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-catatonit

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-docker

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-gvproxy

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-plugins

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-remote

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-tests

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

python3-criu

3.18-5.module+el8.10.0+90770+75f7d03c

python3-podman

4.9.0-3.module+el8.10.0+90770+75f7d03c

runc

1.2.9-2.module+el8.10.0+90770+75f7d03c

skopeo

1.14.5-5.module+el8.10.0+90770+75f7d03c

skopeo-tests

1.14.5-5.module+el8.10.0+90770+75f7d03c

slirp4netns

1.2.3-1.module+el8.10.0+90770+75f7d03c

udica

0.2.6-21.module+el8.10.0+90770+75f7d03c

Oracle Linux x86_64

Module container-tools:ol8 is enabled

aardvark-dns

1.10.1-2.module+el8.10.0+90770+75f7d03c

buildah

1.33.14-1.module+el8.10.0+90770+75f7d03c

buildah-tests

1.33.14-1.module+el8.10.0+90770+75f7d03c

cockpit-podman

84.1-1.module+el8.10.0+90770+75f7d03c

conmon

2.1.10-1.module+el8.10.0+90770+75f7d03c

container-selinux

2.229.0-2.module+el8.10.0+90770+75f7d03c

containernetworking-plugins

1.4.0-6.module+el8.10.0+90770+75f7d03c

containers-common

1-82.0.1.module+el8.10.0+90770+75f7d03c

crit

3.18-5.module+el8.10.0+90770+75f7d03c

criu

3.18-5.module+el8.10.0+90770+75f7d03c

criu-devel

3.18-5.module+el8.10.0+90770+75f7d03c

criu-libs

3.18-5.module+el8.10.0+90770+75f7d03c

crun

1.14.3-2.module+el8.10.0+90770+75f7d03c

fuse-overlayfs

1.13-1.module+el8.10.0+90770+75f7d03c

libslirp

4.4.0-2.module+el8.10.0+90770+75f7d03c

libslirp-devel

4.4.0-2.module+el8.10.0+90770+75f7d03c

netavark

1.10.3-1.module+el8.10.0+90770+75f7d03c

oci-seccomp-bpf-hook

1.2.10-1.module+el8.10.0+90770+75f7d03c

podman

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-catatonit

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-docker

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-gvproxy

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-plugins

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-remote

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

podman-tests

4.9.4-27.0.1.module+el8.10.0+90770+75f7d03c

python3-criu

3.18-5.module+el8.10.0+90770+75f7d03c

python3-podman

4.9.0-3.module+el8.10.0+90770+75f7d03c

runc

1.2.9-2.module+el8.10.0+90770+75f7d03c

skopeo

1.14.5-5.module+el8.10.0+90770+75f7d03c

skopeo-tests

1.14.5-5.module+el8.10.0+90770+75f7d03c

slirp4netns

1.2.3-1.module+el8.10.0+90770+75f7d03c

udica

0.2.6-21.module+el8.10.0+90770+75f7d03c

Связанные CVE

CVE-2025-47913

Ссылки на источники

Связанные уязвимости

CVE-2025-47913

CVSS3: 7.5

ubuntu

3 месяца назад

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

CVE-2025-47913

CVSS3: 7.5

nvd

3 месяца назад

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process.

CVE-2025-47913

CVSS3: 7.5

msrc

3 месяца назад

Potential denial of service in golang.org/x/crypto/ssh/agent

CVE-2025-47913

CVSS3: 7.5

debian

3 месяца назад

SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed respons ...

openSUSE-SU-2025:20138-1

suse-cvrf

2 месяца назад

Security update for act