RHSA-2026:10703

Description

Red Hat Security Advisory: container-tools:rhel8 security update

CVSS Metrics

• v3.1•HIGH•Score: 8.2CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Affected Systems

• redhat•aardvark-dns

  < 2:1.0.1-40.module+el8.6.0+24209+25a14987

• redhat•buildah

  < 1:1.26.10-1.module+el8.6.0+24209+25a14987

• redhat•buildah-debuginfo

  < 1:1.26.10-1.module+el8.6.0+24209+25a14987

• redhat•buildah-debugsource

  < 1:1.26.10-1.module+el8.6.0+24209+25a14987

• redhat•buildah-tests

  < 1:1.26.10-1.module+el8.6.0+24209+25a14987

• redhat•buildah-tests-debuginfo

  < 1:1.26.10-1.module+el8.6.0+24209+25a14987

• redhat•cockpit-podman

  < 0:49.1-1.module+el8.6.0+24209+25a14987

• redhat•conmon

  < 2:2.1.4-1.module+el8.6.0+24209+25a14987

• redhat•conmon-debuginfo

  < 2:2.1.4-1.module+el8.6.0+24209+25a14987

• redhat•conmon-debugsource

  < 2:2.1.4-1.module+el8.6.0+24209+25a14987

• redhat•container-selinux

  < 2:2.189.0-1.module+el8.6.0+24209+25a14987

• redhat•containernetworking-plugins

  < 1:1.1.1-5.module+el8.6.0+24209+25a14987.1

• redhat•containernetworking-plugins-debuginfo

  < 1:1.1.1-5.module+el8.6.0+24209+25a14987.1

• redhat•containernetworking-plugins-debugsource

  < 1:1.1.1-5.module+el8.6.0+24209+25a14987.1

• redhat•containers-common

  < 2:1-40.module+el8.6.0+24209+25a14987

• redhat•crit

  < 0:3.15-3.module+el8.6.0+24209+25a14987

• redhat•criu

  < 0:3.15-3.module+el8.6.0+24209+25a14987

• redhat•criu-debuginfo

  < 0:3.15-3.module+el8.6.0+24209+25a14987

• redhat•criu-debugsource

  < 0:3.15-3.module+el8.6.0+24209+25a14987

• redhat•criu-devel

  < 0:3.15-3.module+el8.6.0+24209+25a14987

• redhat•criu-libs

  < 0:3.15-3.module+el8.6.0+24209+25a14987

• redhat•criu-libs-debuginfo

  < 0:3.15-3.module+el8.6.0+24209+25a14987

• redhat•crun

  < 0:1.14.3-1.module+el8.6.0+24209+25a14987

• redhat•crun-debuginfo

  < 0:1.14.3-1.module+el8.6.0+24209+25a14987

• redhat•crun-debugsource

  < 0:1.14.3-1.module+el8.6.0+24209+25a14987

• redhat•fuse-overlayfs

  < 0:1.9-1.module+el8.6.0+24209+25a14987

• redhat•fuse-overlayfs-debuginfo

  < 0:1.9-1.module+el8.6.0+24209+25a14987

• redhat•fuse-overlayfs-debugsource

  < 0:1.9-1.module+el8.6.0+24209+25a14987

• redhat•libslirp

  < 0:4.4.0-1.module+el8.6.0+24209+25a14987

• redhat•libslirp-debuginfo

  < 0:4.4.0-1.module+el8.6.0+24209+25a14987

• redhat•libslirp-debugsource

  < 0:4.4.0-1.module+el8.6.0+24209+25a14987

• redhat•libslirp-devel

  < 0:4.4.0-1.module+el8.6.0+24209+25a14987

• redhat•netavark

  < 2:1.0.1-40.module+el8.6.0+24209+25a14987

• redhat•oci-seccomp-bpf-hook

  < 0:1.2.6-1.module+el8.6.0+24215+d8cb7679.1

• redhat•oci-seccomp-bpf-hook-debuginfo

  < 0:1.2.6-1.module+el8.6.0+24215+d8cb7679.1

• redhat•oci-seccomp-bpf-hook-debugsource

  < 0:1.2.6-1.module+el8.6.0+24215+d8cb7679.1

• redhat•podman

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-catatonit

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-catatonit-debuginfo

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-debuginfo

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-debugsource

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-docker

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-gvproxy

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-gvproxy-debuginfo

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-plugins

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-plugins-debuginfo

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-remote

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-remote-debuginfo

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•podman-tests

  < 2:4.2.0-8.module+el8.6.0+24209+25a14987.5

• redhat•python-podman

  < 0:4.0.1-1.module+el8.6.0+24209+25a14987

Showing first 50 affected entries in server-rendered view.

References (47)

• https://access.redhat.com/errata/RHSA-2026:10703
• https://access.redhat.com/security/updates/classification/#important
• https://bugzilla.redhat.com/show_bug.cgi?id=2404705
• https://bugzilla.redhat.com/show_bug.cgi?id=2404708
• https://bugzilla.redhat.com/show_bug.cgi?id=2404715
• https://bugzilla.redhat.com/show_bug.cgi?id=2407258
• https://bugzilla.redhat.com/show_bug.cgi?id=2414943
• https://bugzilla.redhat.com/show_bug.cgi?id=2418900
• https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_10703.json
• https://access.redhat.com/security/cve/CVE-2025-31133
• https://www.cve.org/CVERecord?id=CVE-2025-31133
• https://nvd.nist.gov/vuln/detail/CVE-2025-31133
• https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2
• https://access.redhat.com/security/cve/CVE-2025-47913
• https://www.cve.org/CVERecord?id=CVE-2025-47913
• https://nvd.nist.gov/vuln/detail/CVE-2025-47913
• https://github.com/advisories/GHSA-hcg3-q754-cr77
• https://go.dev/cl/700295
• https://go.dev/issue/75178
• https://pkg.go.dev/vuln/GO-2025-4116
• https://access.redhat.com/security/cve/CVE-2025-52565
• https://www.cve.org/CVERecord?id=CVE-2025-52565
• https://nvd.nist.gov/vuln/detail/CVE-2025-52565
• https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r
• https://access.redhat.com/security/cve/CVE-2025-52881
• https://www.cve.org/CVERecord?id=CVE-2025-52881
• https://nvd.nist.gov/vuln/detail/CVE-2025-52881
• https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm
• https://github.com/opencontainers/selinux/pull/237
• https://access.redhat.com/security/cve/CVE-2025-58183
• https://www.cve.org/CVERecord?id=CVE-2025-58183
• https://nvd.nist.gov/vuln/detail/CVE-2025-58183
• https://go.dev/cl/709861
• https://go.dev/issue/75677
• https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI
• https://pkg.go.dev/vuln/GO-2025-4014
• https://access.redhat.com/security/cve/CVE-2025-65637
• https://www.cve.org/CVERecord?id=CVE-2025-65637
• https://nvd.nist.gov/vuln/detail/CVE-2025-65637
• https://github.com/mjuanxd/logrus-dos-poc
• https://github.com/mjuanxd/logrus-dos-poc/blob/main/README.md
• https://github.com/sirupsen/logrus/issues/1370
• https://github.com/sirupsen/logrus/pull/1376
• https://github.com/sirupsen/logrus/releases/tag/v1.8.3
• https://github.com/sirupsen/logrus/releases/tag/v1.9.1
• https://github.com/sirupsen/logrus/releases/tag/v1.9.3
• https://security.snyk.io/vuln/SNYK-GOLANG-GITHUBCOMSIRUPSENLOGRUS-5564391