RHSA-2025:15904

Description

Red Hat Security Advisory: container-tools:rhel8 security update

CVSS Metrics

• v3.1•HIGH•Score: 8.1CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Affected Systems

• redhat•aardvark-dns

  < 2:1.10.1-2.module+el8.10.0+23498+f7d19d48

• redhat•buildah

  < 2:1.33.12-2.module+el8.10.0+23498+f7d19d48

• redhat•buildah-debuginfo

  < 2:1.33.12-2.module+el8.10.0+23498+f7d19d48

• redhat•buildah-debugsource

  < 2:1.33.12-2.module+el8.10.0+23498+f7d19d48

• redhat•buildah-tests

  < 2:1.33.12-2.module+el8.10.0+23498+f7d19d48

• redhat•buildah-tests-debuginfo

  < 2:1.33.12-2.module+el8.10.0+23498+f7d19d48

• redhat•cockpit-podman

  < 0:84.1-1.module+el8.10.0+23498+f7d19d48

• redhat•conmon

  < 3:2.1.10-1.module+el8.10.0+23498+f7d19d48

• redhat•conmon-debuginfo

  < 3:2.1.10-1.module+el8.10.0+23498+f7d19d48

• redhat•conmon-debugsource

  < 3:2.1.10-1.module+el8.10.0+23498+f7d19d48

• redhat•container-selinux

  < 2:2.229.0-2.module+el8.10.0+23498+f7d19d48

• redhat•containernetworking-plugins

  < 1:1.4.0-6.module+el8.10.0+23498+f7d19d48

• redhat•containernetworking-plugins-debuginfo

  < 1:1.4.0-6.module+el8.10.0+23498+f7d19d48

• redhat•containernetworking-plugins-debugsource

  < 1:1.4.0-6.module+el8.10.0+23498+f7d19d48

• redhat•containers-common

  < 2:1-82.module+el8.10.0+23498+f7d19d48

• redhat•crit

  < 0:3.18-5.module+el8.10.0+23498+f7d19d48

• redhat•criu

  < 0:3.18-5.module+el8.10.0+23498+f7d19d48

• redhat•criu-debuginfo

  < 0:3.18-5.module+el8.10.0+23498+f7d19d48

• redhat•criu-debugsource

  < 0:3.18-5.module+el8.10.0+23498+f7d19d48

• redhat•criu-devel

  < 0:3.18-5.module+el8.10.0+23498+f7d19d48

• redhat•criu-libs

  < 0:3.18-5.module+el8.10.0+23498+f7d19d48

• redhat•criu-libs-debuginfo

  < 0:3.18-5.module+el8.10.0+23498+f7d19d48

• redhat•crun

  < 0:1.14.3-2.module+el8.10.0+23498+f7d19d48

• redhat•crun-debuginfo

  < 0:1.14.3-2.module+el8.10.0+23498+f7d19d48

• redhat•crun-debugsource

  < 0:1.14.3-2.module+el8.10.0+23498+f7d19d48

• redhat•fuse-overlayfs

  < 0:1.13-1.module+el8.10.0+23498+f7d19d48

• redhat•fuse-overlayfs-debuginfo

  < 0:1.13-1.module+el8.10.0+23498+f7d19d48

• redhat•fuse-overlayfs-debugsource

  < 0:1.13-1.module+el8.10.0+23498+f7d19d48

• redhat•libslirp

  < 0:4.4.0-2.module+el8.10.0+23498+f7d19d48

• redhat•libslirp-debuginfo

  < 0:4.4.0-2.module+el8.10.0+23498+f7d19d48

• redhat•libslirp-debugsource

  < 0:4.4.0-2.module+el8.10.0+23498+f7d19d48

• redhat•libslirp-devel

  < 0:4.4.0-2.module+el8.10.0+23498+f7d19d48

• redhat•netavark

  < 2:1.10.3-1.module+el8.10.0+23498+f7d19d48

• redhat•oci-seccomp-bpf-hook

  < 0:1.2.10-1.module+el8.10.0+23498+f7d19d48

• redhat•oci-seccomp-bpf-hook-debuginfo

  < 0:1.2.10-1.module+el8.10.0+23498+f7d19d48

• redhat•oci-seccomp-bpf-hook-debugsource

  < 0:1.2.10-1.module+el8.10.0+23498+f7d19d48

• redhat•podman

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-catatonit

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-catatonit-debuginfo

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-debuginfo

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-debugsource

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-docker

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-gvproxy

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-gvproxy-debuginfo

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-plugins

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-plugins-debuginfo

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-remote

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-remote-debuginfo

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•podman-tests

  < 4:4.9.4-23.module+el8.10.0+23498+f7d19d48

• redhat•python-podman

  < 0:4.9.0-3.module+el8.10.0+23498+f7d19d48

Showing first 50 affected entries in server-rendered view.

References (14)

• https://access.redhat.com/errata/RHSA-2025:15904
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2393152
• https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15904.json
• https://access.redhat.com/security/cve/CVE-2025-4953
• https://bugzilla.redhat.com/show_bug.cgi?id=2367235
• https://www.cve.org/CVERecord?id=CVE-2025-4953
• https://nvd.nist.gov/vuln/detail/CVE-2025-4953
• https://github.com/containers/podman/pull/25173
• https://access.redhat.com/security/cve/CVE-2025-9566
• https://www.cve.org/CVERecord?id=CVE-2025-9566
• https://nvd.nist.gov/vuln/detail/CVE-2025-9566
• https://github.com/containers/podman/commit/43fbde4e665fe6cee6921868f04b7ccd3de5ad89
• https://github.com/containers/podman/security/advisories/GHSA-wp3j-xq48-xpjw