Описание
Security update for podman
This update for podman fixes the following issues:
- CVE-2025-9566: fixed a case when kube play command could overwrite host files (bsc#1249154).
Список пакетов
Image SLES15-SP5-Micro-5-5
podman-4.9.5-150500.3.49.1
Image SLES15-SP5-Micro-5-5-Azure
podman-4.9.5-150500.3.49.1
Image SLES15-SP5-Micro-5-5-BYOS
podman-4.9.5-150500.3.49.1
Image SLES15-SP5-Micro-5-5-BYOS-Azure
podman-4.9.5-150500.3.49.1
Image SLES15-SP5-Micro-5-5-BYOS-EC2
podman-4.9.5-150500.3.49.1
Image SLES15-SP5-Micro-5-5-EC2
podman-4.9.5-150500.3.49.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS
podman-4.9.5-150500.3.49.1
podman-docker-4.9.5-150500.3.49.1
podman-remote-4.9.5-150500.3.49.1
podmansh-4.9.5-150500.3.49.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS
podman-4.9.5-150500.3.49.1
podman-docker-4.9.5-150500.3.49.1
podman-remote-4.9.5-150500.3.49.1
podmansh-4.9.5-150500.3.49.1
SUSE Linux Enterprise Micro 5.5
podman-4.9.5-150500.3.49.1
podman-docker-4.9.5-150500.3.49.1
podman-remote-4.9.5-150500.3.49.1
podmansh-4.9.5-150500.3.49.1
SUSE Linux Enterprise Module for Containers 15 SP6
podman-4.9.5-150500.3.49.1
podman-docker-4.9.5-150500.3.49.1
podman-remote-4.9.5-150500.3.49.1
podmansh-4.9.5-150500.3.49.1
SUSE Linux Enterprise Module for Containers 15 SP7
podman-4.9.5-150500.3.49.1
podman-docker-4.9.5-150500.3.49.1
podman-remote-4.9.5-150500.3.49.1
podmansh-4.9.5-150500.3.49.1
SUSE Linux Enterprise Server 15 SP5-LTSS
podman-4.9.5-150500.3.49.1
podman-docker-4.9.5-150500.3.49.1
podman-remote-4.9.5-150500.3.49.1
podmansh-4.9.5-150500.3.49.1
SUSE Linux Enterprise Server for SAP Applications 15 SP5
podman-4.9.5-150500.3.49.1
podman-docker-4.9.5-150500.3.49.1
podman-remote-4.9.5-150500.3.49.1
podmansh-4.9.5-150500.3.49.1
SUSE Multi-Linux Manager Proxy Extension for SLE 5.1
podman-4.9.5-150500.3.49.1
SUSE Multi-Linux Manager Server Extension for SLE 5.1
podman-4.9.5-150500.3.49.1
openSUSE Leap 15.6
podman-4.9.5-150500.3.49.1
podman-docker-4.9.5-150500.3.49.1
podman-remote-4.9.5-150500.3.49.1
podmansh-4.9.5-150500.3.49.1
Ссылки
- Link for SUSE-SU-2025:3782-1
- E-Mail link for SUSE-SU-2025:3782-1
- SUSE Security Ratings
- SUSE Bug 1249154
- SUSE CVE CVE-2025-9566 page
Описание
There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file. Binary-Affected: podman Upstream-version-introduced: v4.0.0 Upstream-version-fixed: v5.6.1
Затронутые продукты
Image SLES15-SP5-Micro-5-5-Azure:podman-4.9.5-150500.3.49.1
Image SLES15-SP5-Micro-5-5-BYOS-Azure:podman-4.9.5-150500.3.49.1
Image SLES15-SP5-Micro-5-5-BYOS-EC2:podman-4.9.5-150500.3.49.1
Image SLES15-SP5-Micro-5-5-BYOS:podman-4.9.5-150500.3.49.1
Ссылки
- CVE-2025-9566
- SUSE Bug 1249154